429
edits
Changes
Jump to navigation
Jump to search
{{Cloud Information Centre - Government of Canada}}
<b>
</b>
<!-- NAV -->
<!-- Columns -->
{| width="100%" cellpadding="10"
|width="90%" style="color: black;" align="right" |
<!-- COLUMN 1 STARTS: -->
[[Template: Politique|Français]]
<!-- COLUMN 1 ENDS: -->
|width="10%" style="color: black; align=center" |
<!-- COLUMN 2 STARTS: -->
<!-- COLUMN 2 ENDS: -->
<!-- Columns -->
|}
{| width="100%" cellpadding="10"
|-valign="top"
|width="50%" style="color: black;" |
<!-- COLUMN 1 STARTS: -->
[[Image:Governance.jpg|250x250px|center |link=Governance]]
<!-- COLUMN 1 ENDS: -->
|width="50%" style="color: black;" |
<!-- COLUMN 2 STARTS: -->
[[Image:Cic.jpg|center|250x250px |link=GC_Cloud_Infocentre]]
<!-- COLUMN 2 ENDS: -->
|}
<span style="font-family: Century Gothic; font-size: 28pt;"><font color="#9F000F;">Instruments de politique </font><span>
<big><big>Le Secrétariat du Conseil du Trésor (SCT) a élaboré un ensemble d’instruments de politique qui fournissent les orientations stratégiques nécessaires pour permettre l’adoption sans heurt de l’informatique en nuage dans l’ensemble du gouvernement du Canada.
<br><br>
== Plans stratégiques ==
* [https://www.canada.ca/en/government/system/digital-government/digital-operations-strategic-plan-2018-2022.html Plan stratégique des opérations numériques de 2018 à 2022]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/strategic-plan-information-management-information-technology.html Plan stratégique de la gestion de l’information et de la technologie de l’information du gouvernement du Canada de 2017-2021]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-cloud-adoption-strategy.html • Stratégie d’adoption de l’informatique en nuage du gouvernement du Canada : Mise à jour de 2018]
== Politiques et Directives ==
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32603 ]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Directive sur les services et le numérique]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Politique sur la gestion des technologies de l’information]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Cadre stratégique pour l’information et la technologie]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=12742 Politique sur la gestion de l’information]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32592 Directive sur la prise de décision automatisée]
== Normes et lignes directrices ==
* [https://www.canada.ca/en/government/system/digital-government/government-canada-digital-standards.html Normes numériques]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/government-canada-standards-apis.html Normes sur les interfaces de programmation d’applications (API)]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-right-cloud-selection-guidance.html Guide de sélection du nuage approprié du gouvernement du Canada]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/cloud-security-risk-management-approach-procedures.html Approche et procédures de gestion des risques à la sécurité de l’informatique en nuage du gouvernement du Canada]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-security-control-profile-cloud-based-it-services.html Profil des mesures de sécurité du gouvernement du Canada pour les services du GC fondés sur l’informatique en nuage]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Livre blanc du gouvernement du Canada : Souveraineté des données et nuage public]
* [https://www.canada.ca/en/treasury-board-secretariat/services/access-information-privacy/security-identity-management.html Directives, normes, lignes directrices et publications relatives à l’orientation de la gestion de la sécurité et de l’identité]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Utilisation sécurisée des services d’informatique en nuage : ] comment mettre en place des solutions infonuagiques sécurisées.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-security-control-profile-cloud-based-it-services.html Mesures de sécurité recommandées pour les services fondés sur l’informatique en nuage :] -comment sécuriser, gérer et utiliser les services infonuagiques.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-security-control-profile-cloud-based-it-services.html Utilisation de signatures électroniques : ]- guide sur l’utilisation de signatures électroniques à l’appui des activités quotidiennes du GC.
* [https://www.canada.ca/en/government/system/digital-government/online-security-privacy/government-canada-guidance-using-electronic-signatures.html Règlements sur la signature électronique sécurisée : ] - obtenir une signature électronique valide.
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=20008 Infrastructure à clé publique : ] -ligne directrice sur la création de clés publiques pour la gestion de l’identité sécurisée
* [https://www.canada.ca/en/government/system/digital-government/password-guidance.html Guide de gestion des mots de passe : ] - comment les services gouvernementaux devraient-ils gérer les mots de passe des utilisateurs.
* [https://www.canada.ca/en/revenue-agency/services/about-canada-revenue-agency-cra/protecting-your-privacy/privacy-impact-assessment.html Sommaires d’évaluations des facteurs relatifs à la vie privée : ] - évaluation des facteurs relatifs à la vie privée (ÉFVP)
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-right-cloud-selection-guidance.html • Sélectionner le bon service infonuagique : ] - découvrez quel modèle de déploiement en nuage convient à votre organisation.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-electronic-data-residency.html Data residency requirements] - Understand the Government of Canada’s requirements for the storage of data within Canada.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Secure use of cloud services] - How to put in place secure cloud solutions.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/cloud-security-risk-management-approach-procedures.html Risk-management for cloud-based services] - Protect cloud services by ensuring that the proper security controls are in place.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Data sovereignty in cloud environments] - Assessing the risks of foreign governments accessing Canadian data in the cloud.
== Cloud Security ==
=== Policies and Standards ===
::* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=12755 Policy on Management of Information Technology]
::* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=16578 Policy on Government Security]
::* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-electronic-data-residency.html Direction for Electronic Data Residency, ITPIN No: 2017-02]
::* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Direction on the Secure Use of Commercial Cloud Services: Security Policy Implementation Notice (SPIN)]
=== Guidance ===
::* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-computing/government-canada-security-control-profile-cloud-based-it-services.html Government of Canada Security Control Profile for Cloud-Based GC IT Services]
::* [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 Government of Canada Cloud Security Risk Management Approach and Procedures]
::* [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada]
::* [https://cyber.gc.ca/en/guidance/network-security-zoning-design-considerations-placement-services-within-zones-itsg-38 CCCS ITSG-38 Network Security Zoning - Design Considerations for Placement of Services within Zones]
::* [https://cyber.gc.ca/en/guidance/user-authentication-guidance-information-technology-systems-itsp30031-v3 CCCS ITSP.30.031 V2 User Authentication Guidance for Information Technology Systems]
::* [https://nam06.safelinks.protection.outlook.com/?url=https://www.cse-cst.gc.ca/en/node/1830/html/26507&data=02|01|Jamie.Hart@microsoft.com|7503434d3e8c4c8cc23808d68d7d1039|72f988bf86f141af91ab2d7cd011db47|1|0|636851965624128440&sdata=TDPmXQvqrn0jGPdERr3KmlsTo0WJVu646TgUe8ZpxNg%3D&reserved=0 CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols]
::* [https://cyber.gc.ca/en/guidance/cloud-service-provider-information-technology-security-assessment-process-itsm50100 CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process]
::* [https://intranet.canada.ca/wg-tg/cagc-angc-eng.asp Guidance on Cloud Authentication for the Government of Canada]
::* [https://intranet.canada.ca/wg-tg/rtua-rafu-eng.asp Recommendations for Two-Factor User Authentication Within the Government of Canada Enterprise Domain]
::* [https://www.gcpedia.gc.ca/gcwiki/images/e/e3/GC_Event_Logging_Strategy.pdf GC Event Logging Strategy (Draft)]
::* [https://www.gcpedia.gc.ca/gcwiki/images/5/5f/GC_Cloud_Event_Management_Standard_Operating_Procedure.pdf Standard Operating Procedure for GC Cloud Event Management]
::* [https://www.gcpedia.gc.ca/gcwiki/images/a/a8/Security_Playbook_for_Information_System_Solutions.pdf Security Playbook for Information System Solutions]
=== Tools & Templates ===
::* https://gccode.ssc-spc.gc.ca/GCCloudEnablement
::* https://github.com/canada-ca/accelerators_accelerateurs-azure
::* https://github.com/canada-ca/accelerators_accelerateurs-aws
== Cloud Security Initiative ==
Learn recommendations and actions that your Department can implement to protect your networks through the Treasury Board Secretariat’s Cyber Security initiative [https://www.gcpedia.gc.ca/wiki/Cloud_Security_Initiative Cloud Security Initiative]
</big></big>
{{GC Cloud Information Centre Footer}}
__FORCETOC__
Created page with " {{Cloud Information Centre - Government of Canada}} <b> </b> <!-- NAV --> <!-- Columns --> {| width="100%" cellpadding="10" |width="90%" style="color: black;" align="right..."
{{Cloud Information Centre - Government of Canada}}
<b>
</b>
<!-- NAV -->
<!-- Columns -->
{| width="100%" cellpadding="10"
|width="90%" style="color: black;" align="right" |
<!-- COLUMN 1 STARTS: -->
[[Template: Politique|Français]]
<!-- COLUMN 1 ENDS: -->
|width="10%" style="color: black; align=center" |
<!-- COLUMN 2 STARTS: -->
<!-- COLUMN 2 ENDS: -->
<!-- Columns -->
|}
{| width="100%" cellpadding="10"
|-valign="top"
|width="50%" style="color: black;" |
<!-- COLUMN 1 STARTS: -->
[[Image:Governance.jpg|250x250px|center |link=Governance]]
<!-- COLUMN 1 ENDS: -->
|width="50%" style="color: black;" |
<!-- COLUMN 2 STARTS: -->
[[Image:Cic.jpg|center|250x250px |link=GC_Cloud_Infocentre]]
<!-- COLUMN 2 ENDS: -->
|}
<span style="font-family: Century Gothic; font-size: 28pt;"><font color="#9F000F;">Instruments de politique </font><span>
<big><big>Le Secrétariat du Conseil du Trésor (SCT) a élaboré un ensemble d’instruments de politique qui fournissent les orientations stratégiques nécessaires pour permettre l’adoption sans heurt de l’informatique en nuage dans l’ensemble du gouvernement du Canada.
<br><br>
== Plans stratégiques ==
* [https://www.canada.ca/en/government/system/digital-government/digital-operations-strategic-plan-2018-2022.html Plan stratégique des opérations numériques de 2018 à 2022]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/strategic-plan-information-management-information-technology.html Plan stratégique de la gestion de l’information et de la technologie de l’information du gouvernement du Canada de 2017-2021]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-cloud-adoption-strategy.html • Stratégie d’adoption de l’informatique en nuage du gouvernement du Canada : Mise à jour de 2018]
== Politiques et Directives ==
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32603 ]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Directive sur les services et le numérique]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Politique sur la gestion des technologies de l’information]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Cadre stratégique pour l’information et la technologie]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=12742 Politique sur la gestion de l’information]
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32592 Directive sur la prise de décision automatisée]
== Normes et lignes directrices ==
* [https://www.canada.ca/en/government/system/digital-government/government-canada-digital-standards.html Normes numériques]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/government-canada-standards-apis.html Normes sur les interfaces de programmation d’applications (API)]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-right-cloud-selection-guidance.html Guide de sélection du nuage approprié du gouvernement du Canada]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/cloud-security-risk-management-approach-procedures.html Approche et procédures de gestion des risques à la sécurité de l’informatique en nuage du gouvernement du Canada]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-security-control-profile-cloud-based-it-services.html Profil des mesures de sécurité du gouvernement du Canada pour les services du GC fondés sur l’informatique en nuage]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Livre blanc du gouvernement du Canada : Souveraineté des données et nuage public]
* [https://www.canada.ca/en/treasury-board-secretariat/services/access-information-privacy/security-identity-management.html Directives, normes, lignes directrices et publications relatives à l’orientation de la gestion de la sécurité et de l’identité]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Utilisation sécurisée des services d’informatique en nuage : ] comment mettre en place des solutions infonuagiques sécurisées.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-security-control-profile-cloud-based-it-services.html Mesures de sécurité recommandées pour les services fondés sur l’informatique en nuage :] -comment sécuriser, gérer et utiliser les services infonuagiques.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-security-control-profile-cloud-based-it-services.html Utilisation de signatures électroniques : ]- guide sur l’utilisation de signatures électroniques à l’appui des activités quotidiennes du GC.
* [https://www.canada.ca/en/government/system/digital-government/online-security-privacy/government-canada-guidance-using-electronic-signatures.html Règlements sur la signature électronique sécurisée : ] - obtenir une signature électronique valide.
* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=20008 Infrastructure à clé publique : ] -ligne directrice sur la création de clés publiques pour la gestion de l’identité sécurisée
* [https://www.canada.ca/en/government/system/digital-government/password-guidance.html Guide de gestion des mots de passe : ] - comment les services gouvernementaux devraient-ils gérer les mots de passe des utilisateurs.
* [https://www.canada.ca/en/revenue-agency/services/about-canada-revenue-agency-cra/protecting-your-privacy/privacy-impact-assessment.html Sommaires d’évaluations des facteurs relatifs à la vie privée : ] - évaluation des facteurs relatifs à la vie privée (ÉFVP)
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-right-cloud-selection-guidance.html • Sélectionner le bon service infonuagique : ] - découvrez quel modèle de déploiement en nuage convient à votre organisation.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-electronic-data-residency.html Data residency requirements] - Understand the Government of Canada’s requirements for the storage of data within Canada.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Secure use of cloud services] - How to put in place secure cloud solutions.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/cloud-security-risk-management-approach-procedures.html Risk-management for cloud-based services] - Protect cloud services by ensuring that the proper security controls are in place.
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Data sovereignty in cloud environments] - Assessing the risks of foreign governments accessing Canadian data in the cloud.
== Cloud Security ==
=== Policies and Standards ===
::* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=12755 Policy on Management of Information Technology]
::* [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=16578 Policy on Government Security]
::* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-electronic-data-residency.html Direction for Electronic Data Residency, ITPIN No: 2017-02]
::* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Direction on the Secure Use of Commercial Cloud Services: Security Policy Implementation Notice (SPIN)]
=== Guidance ===
::* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-computing/government-canada-security-control-profile-cloud-based-it-services.html Government of Canada Security Control Profile for Cloud-Based GC IT Services]
::* [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 Government of Canada Cloud Security Risk Management Approach and Procedures]
::* [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada]
::* [https://cyber.gc.ca/en/guidance/network-security-zoning-design-considerations-placement-services-within-zones-itsg-38 CCCS ITSG-38 Network Security Zoning - Design Considerations for Placement of Services within Zones]
::* [https://cyber.gc.ca/en/guidance/user-authentication-guidance-information-technology-systems-itsp30031-v3 CCCS ITSP.30.031 V2 User Authentication Guidance for Information Technology Systems]
::* [https://nam06.safelinks.protection.outlook.com/?url=https://www.cse-cst.gc.ca/en/node/1830/html/26507&data=02|01|Jamie.Hart@microsoft.com|7503434d3e8c4c8cc23808d68d7d1039|72f988bf86f141af91ab2d7cd011db47|1|0|636851965624128440&sdata=TDPmXQvqrn0jGPdERr3KmlsTo0WJVu646TgUe8ZpxNg%3D&reserved=0 CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols]
::* [https://cyber.gc.ca/en/guidance/cloud-service-provider-information-technology-security-assessment-process-itsm50100 CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process]
::* [https://intranet.canada.ca/wg-tg/cagc-angc-eng.asp Guidance on Cloud Authentication for the Government of Canada]
::* [https://intranet.canada.ca/wg-tg/rtua-rafu-eng.asp Recommendations for Two-Factor User Authentication Within the Government of Canada Enterprise Domain]
::* [https://www.gcpedia.gc.ca/gcwiki/images/e/e3/GC_Event_Logging_Strategy.pdf GC Event Logging Strategy (Draft)]
::* [https://www.gcpedia.gc.ca/gcwiki/images/5/5f/GC_Cloud_Event_Management_Standard_Operating_Procedure.pdf Standard Operating Procedure for GC Cloud Event Management]
::* [https://www.gcpedia.gc.ca/gcwiki/images/a/a8/Security_Playbook_for_Information_System_Solutions.pdf Security Playbook for Information System Solutions]
=== Tools & Templates ===
::* https://gccode.ssc-spc.gc.ca/GCCloudEnablement
::* https://github.com/canada-ca/accelerators_accelerateurs-azure
::* https://github.com/canada-ca/accelerators_accelerateurs-aws
== Cloud Security Initiative ==
Learn recommendations and actions that your Department can implement to protect your networks through the Treasury Board Secretariat’s Cyber Security initiative [https://www.gcpedia.gc.ca/wiki/Cloud_Security_Initiative Cloud Security Initiative]
</big></big>
{{GC Cloud Information Centre Footer}}
__FORCETOC__
