Whether it sits within ISED or other agencies.... First of all, I think a multi-agency approach is probably the right one. Analyzing and assessing the potential national security implications isn't just for ISED. There's the national security apparatus and a whole bunch of other things.
The most important thing I have found, in my experience with ISED, is that they don't have the national security experience. It doesn't reside in ISED, so they are often playing shuttle diplomacy or shuttle communication between the national security group and the investor. At the very least, I would house some of that expertise within ISED. I think having a multi-agency or whole-of-government approach to assessing these things and putting the right people in the right place so we can deal with this efficiently is the most effective way to assess national security risk and develop mitigation strategies, if those are appropriate.
I think a combined approach is the correct one.