Description
As a next step following Course 115 – Foundations of cloud security in the Government of Canada, this workshop aims to refine cloud computing concepts, and establish a deeper understanding of the Cloud Computing SA&A Process within a GC context. The advice and guidance provided in this workshop will explore Cloud Service Provider Assessments and risk management decisions when procuring a public cloud service, GC Cloud Usage Profiles, GC Accelerators, Guardrails and general Cloud Security Guidance. This will help GC personnel identify their own organization’s needs, and create a structured approach for managing risks that accounts for the incorporation of cloud services to support their own program goals and outcomes.
Objectives
- Cloud Service Provider Assessments
- Risk Management Process
- CCCS Medium Security Profile and Playbook
- GC Cloud Usage Profile, GC Accelerator, Guardrails
- GC Cloud Security Guidance
Target audience
GC employees at all levels who already have a good understanding of Cloud Computing and SA and A process within the government.
Prerequisites
Prior to attending, participants are required to take course 115 - Foundations of cloud security in the Government of Canada. It is also recommended that participants read the following document: Cloud service provider Information Technology security assessment process (ITSM.50.100).