The Cyber Security Advisory Committee, an industry-led committee consisting of representatives of Ontario's electricity utilities, has prepared version 1.1 of the Ontario Cyber Security Framework (OCSF) and the OEB has made it available online. It addresses third-party supply chain risks by aligning with the National Institute of Standards and Technology (NIST), while enhancing the evaluation and sustainment of a cyber security program by providing illustrative examples based on version 2.1 of the Cybersecurity Capability Maturity Model (C2M2).