GRCP and Staff augmentation

Governance, risk, compliance and preparedness expertise

Formed in Winnipeg in 2019, Castellan Information Security Services is an advisory and consulting firm that specializes in information and cyber security services.

Our growing team of permanent staff are experts and industry-leading information technology, and cyber security experts are physically located across Canada and are experienced in both 'on-site' and virtual service delivery for public and private organizations of all sizes.

We pride ourselves in building strong, long-lasting relationships with the clients we serve and have gained their trust to lead information security projects and supply industry-leading, experienced and certified expert services to both public and private organizations. We continue to support clients who are looking for strategic advice, successful security program development and implementation, project delivery, and technical service delivery to support and work with their in-house security and IT teams.

Protecting our clients enterprise information

"Essentially, we help our clients protect one of their most important assets which is their enterprise information. We spent a lot of time (since 2017 even before Castellan was formed) developing the processes around our services to ensure we offered the level of quality required by our clients" says Brent Patten, Managing Director and Co-founder.

"Our steadily growing staff of industry experts, and our bench of over 100 information security and IT consultants, work with our clients to deliver our services. These include penetration testing and vulnerability assessments, enterprise risk assessments, disaster recovery & business continuity planning, security roadmap and security program management, security training and awareness, security policy development and IT configuration analysis to identify security gaps.

Industry-leading security experts and tested security services

At Castellan Information Security, our industry-leading security experts and tested security services help us build strong relationships with the clients we serve. We have gained their trust to lead security projects and services to enhance their information security programs. We also supply industry-leading, experienced, and certified expert security professionals to organizations looking to bridge the skills gap or increase capacity levels within their in-house IT teams or service providers.

Our advisory services focus on providing information security solutions in the following key areas:

GRCP and Staff Augmentation

  • Governance
  • Risk
  • Compliance
  • Preparedness
  • Staff Augmentation

Castellan Information Security recognized as "certified supplier" under the Canadian Aboriginal and Minority Supply Council (CAMSC).

CAMSC is a not-for-profit national organization that certifies and prepares diverse suppliers to successfully engage and respond to corporate and government buyers. It facilitates the growth of Aboriginal and minority owned businesses by connecting them to procurement activities with companies and governments committed to a diverse and inclusive supply chain.

How we help organizations?

Castellan Information Security provides GRCP and staff augmentation services to organizations, allowing them the flexibility, cost-efficiency, and availability to access top-tier expertise. With the cyber threat landscape constantly evolving, having a responsive and adaptable team is essential to protect sensitive data and maintain business continuity.

By supporting our client's cybersecurity workforce, organizations can enhance their security posture and focus on their core operations, all while mitigating the risks of the digital age.

Types of roles Castellan provides to our clients:

  • Security Architects
  • Security Analysts
  • Security Engineers
  • Security Consultants
  • Security Project/Program Managers
  • Business Resilience Consultants (Disaster Recovery, Business Continuity)
  • Risk & Compliance Analysts/Consultants
  • Governance & Policy Consultants
  • Identity & Access Management Analysts/Consultants
  • Penetration Testing and Vulnerability Assessment Experts


Proven expertise across diverse client relationships

Our clients include large, medium and small-scale organizations in the public and private sectors, such as:

  • Government (Federal, Provincial, Crown Corporations)
  • Telecommunications
  • Insurance
  • Health Care
  • Education
  • Retail and Manufacturing
  • Non-Profit, Charitable Organizations, and Industry Associations

Integrated security for organizations protecting their valuable assets

Unite Interactive