Most Canadian SMEs that suffer a serious cyber breach don't recover. I help you find the gaps in your coverage — and close them — before an attacker finds them first.
The landscape
Automated attacks don't discriminate by size. They scan for weakness — and smaller firms are often the path of least resistance.
One convincing email and an employee wires funds or hands over credentials. The most common entry point, by far.
Files encrypted, operations frozen, a ransom demand. Downtime alone can cost more than the ransom itself.
Your data is only as secure as your weakest vendor — and you can be held responsible for their breach.
No malice required. A misdirected email or a reused password is all it takes to trigger a costly incident.
PIPEDA and provincial laws force breach notification. Fines, legal costs, and lost trust follow.
Does your current policy actually cover these — or are there sublimits and exclusions you don't know about? Let's find out →
Free, no email required
Three quick tools to turn "I think we're fine" into a clear, honest picture of your exposure.
Answer 8 quick questions and get a risk score with a plain-English read on your biggest exposures.
Take the scorecard →See a realistic estimate of what a cyber incident could actually cost your business — beyond the ransom.
Estimate my exposure →The eight questions every SME should ask about their policy. Tick the boxes; see what's missing.
Check my coverage →Real Canadian incidents
Anonymized, but typical. Each one had insurance. Each one found a gap too late.
Wired $80K on a fake vendor invoice. The cyber endorsement sublimit was just $10K — and the claim was denied for having no MFA.
Ransomware froze production for 10 days. Paid a $150K ransom, then lost half a million in output and a major contract.
Unauthorized access to patient records triggered mandatory notification, credit monitoring, and the loss of long-time patients.
Who you're working with
I'm an independent broker and a Certified Cyber Insurance Specialist (CCIS). Independent means I'm not tied to any single insurer — I shop the Canadian market on your behalf to find cyber coverage that actually fits your business, then translate the fine print so you know exactly what you're buying. Cyber wordings change year to year; sublimits and exclusions hide real exposure. My job is to make sure you're protected against today's threats, not last year's.
No sales pitch. No obligation. Just a straight, independent read on your risk and your options.
J.R. Genua is a Registered Insurance Broker. Cyber and commercial insurance is arranged and serviced through St. Andrews Insurance Brokers Ltd., a licensed Canadian insurance brokerage. CyberInsuranceBroker.ca is an independent educational resource operated by J.R. Genua, CCIS.
Book a free reviewFree guide · No fluff
A plain-English field guide from an independent broker — not an insurer: the threats hitting Canadian SMEs hardest, the real costs, and the sublimits and exclusions that quietly gut a policy.
Written by J.R. Genua, CCIS. Enter your email and I'll send it straight to your inbox.
Free download · Bonus
One page. The exact coverages to confirm and the questions to ask before you buy or renew — so you don't discover the gap during a claim.
No pressure, no obligation
Already have a policy? I'll review it and flag the gaps. Don't have one? I'll walk you through your options. Either way, you'll leave knowing exactly where you stand.
Cyber