Managed security awareness · Canada

Your team's security training, run for you.

MakSisu sets up, runs, and reports on your entire security awareness program — interactive simulations your staff actually finish, phishing tests that measure real behaviour, and evidence your insurer and auditor accept.

Book a 15-min walkthrough See how it works
No platform to learn. No content to build. One report per quarter.
Live drill — would your team catch this?
This is the kind of drill your team will practice — in 3D, hands-on.
Who it's for

Built for firms where trust is the product.

If your business holds client data and your cyber-insurance renewal now asks "do you conduct security awareness training?" — this is for you. We work with Canadian firms of 10–100 people that have no internal security team.

Accounting & bookkeeping

Tax season is phishing season

CRA impersonation, fake e-transfer notices, and client-spoofing emails spike every spring. Your staff handle SINs and financials daily — they need reps, not slideshows.

Legal services

Privilege doesn't survive a breach

Law society guidance increasingly expects documented security training. We give you the program and the paper trail, mapped to client-confidentiality obligations.

Insurance & finance

You sell risk — don't carry it

Brokerages and advisors face the same questionnaires they hand to clients. Walk into your own renewal with completion records and falling phishing click-rates.

How it works

Three steps. Then it just runs.

You assign one contact. We handle everything else — your team only ever sees engaging, ten-minute exercises arriving on a sensible schedule.

STEP 01 — WEEK 1

Set up

We deploy a training portal under your branding, load a curriculum matched to your industry and threats, and enrol your staff. A baseline phishing test tells us where you're starting from.

STEP 02 — ONGOING

Run

Monthly interactive exercises — phishing, ransomware, vishing, data handling — in first-person 3D scenarios, not videos. We chase stragglers and run quarterly simulated phishing so you never have to nag anyone.

STEP 03 — QUARTERLY

Prove

Every quarter you receive one report: completion rates, click-rate trends, and risk summary — formatted to hand directly to your insurer, auditor, or board. That's the whole point.

Plans

Pay for outcomes, not seats on a platform.

Simple flat pricing in Canadian dollars. Every plan includes the full interactive exercise library and a named human — not a ticket queue — who knows your business.

Launch

Get a real program stood up fast.

$1,950
ONE-TIME · 10–50 STAFF
  • Training portal set up & staff enrolled
  • Industry-matched 12-module curriculum
  • Baseline phishing simulation & report
  • Policy-ready training records
  • 30 days of support included
Start with Launch

Managed

Your program, run continuously.

$495/mo
INCLUDES LAUNCH SETUP · 3-MONTH MINIMUM
  • Everything in Launch
  • Monthly training assignments & follow-up
  • Quarterly phishing simulations
  • Quarterly insurer/auditor-ready report
  • New-hire onboarding within 2 weeks
  • Annual curriculum refresh
Book a walkthrough

Compliance+

For audits and frameworks.

$995/mo
FOR ISO 27001 · SOC 2 · LAW 25 PROGRAMS
  • Everything in Managed
  • Training mapped to your control framework
  • Audit evidence packages on demand
  • Annual live tabletop exercise
  • Policy review & awareness alignment
  • Direct line to a security professional
Talk compliance
Compliance & insurance

The paperwork is the product.

Training only counts if you can prove it happened. Everything we run produces records mapped to the obligations Canadian firms actually face.

Federal

PIPEDA

Safeguard obligations under Principle 7 include staff training. Our records document who was trained, on what, and when.

Québec

Law 25

Québec's privacy regime expects governance policies and staff awareness. Our privacy modules map directly to its requirements.

Certification

ISO 27001 & SOC 2

Awareness training is a named control in both frameworks. We deliver the evidence packages your auditor asks for, formatted to drop into your audit binder.

Insurance

Cyber insurance renewals

"Do you conduct security awareness training and phishing simulations?" Answer yes — with documentation — and qualify for coverage many insurers now refuse without it.

About

Run by a security professional, not a sales team.

MakSisu Technologies is a Canadian managed-service practice founded by a working cybersecurity professional. We're deliberately small: every client gets a curriculum chosen by someone who reads threat reports for a living, and a quarterly report written by someone who understands what your auditor — and your attacker — is actually looking for.

The training itself uses an interactive 3D exercise library covering phishing, ransomware, social engineering, AI-era threats like deepfakes and prompt injection, and privacy compliance. Your staff face realistic incidents in first person and build the reflexes that matter when a real one lands.

sisu /ˈsiːsuː/ · Finnish, no direct translation

Grit, resilience, and quiet determination in the face of adversity. It's what we build into your team: not fear of threats, but the composure to handle them. That's the name, and that's the job.

Get started

Fifteen minutes. One live drill. No deck.

We'll run you through the same interactive exercise your staff would see, show you a sample quarterly report, and quote you on the spot. If it's not a fit, you'll know fast.

Book a 15-min walkthrough
  • Email[email protected]
  • ServingCanadian businesses, coast to coast — fully remote delivery
  • ResponseWithin one business day
  • LanguagesEnglish (français — coming soon)