5
edits
Changes
New faq about tenant requests
|width="90%" style="color: black;" align="right" |
|width="90%" style="color: black;" align="right" |
<!-- COLUMN 1 STARTS: -->
<!-- COLUMN 1 STARTS: -->
[[Cloud_test_site|English]]
[[Nuage_FAQ|Français]]
<!-- COLUMN 1 ENDS: -->
<!-- COLUMN 1 ENDS: -->
|width="10%" style="color: black; align="center" |
|width="10%" style="color: black; align="center" |
You must security assess these services. No matter where you buy, departments are ultimately responsible for assessment and risk assessment. When you buy through the SSC Framework Agreement, a portion of the security controls has been assessed by SSC and their security partners, thus accelerating your security assessment.
You must security assess these services. No matter where you buy, departments are ultimately responsible for assessment and risk assessment. When you buy through the SSC Framework Agreement, a portion of the security controls has been assessed by SSC and their security partners, thus accelerating your security assessment.
<br><br>
<br><br>
'''♦''' '''If a Department orders Protected B Azure, does it already follow all the security protocols? Or do we need to implement them after we get access to Azure?
'''♦''' '''If a Department orders Protected B Cloud, does it already follow all the security protocols? Or do we need to implement them after we get access?
'''
'''
<br>
<br>
The Cloud Service Provider (CSP) environment has been assessed as part of the issuance of the contract. How the consumer configures and uses the services is the responsibility of the consumer or department. Please refer to the shared responsibility model – see figure 3-3 (https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/cloud-security-risk-management-approach-procedures.html).
The Cloud Service Provider (CSP) environment has been assessed as part of the issuance of the contract. How the consumer configures and uses the services is the responsibility of the consumer or department. Please refer to the shared responsibility model – see figure 3-3 (https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/cloud-security-risk-management-approach-procedures.html).
<br><br>
<br><br>
'''♦''' '''Do Security guardrails are implemented by the vendor directly ie Microsoft?
'''♦''' '''Are security guardrails implemented by the vendor directly?
'''<br>
'''
<br>
No, departments are responsible for implementing the cloud guardrails. Please also review this site - https://github.com/canada-ca/cloud-guardrails.
No, departments are responsible for implementing the cloud guardrails. Please also review this site - https://github.com/canada-ca/cloud-guardrails.
<br><br>
<br><br>
'''♦''' '''Azure is an IAAS and that we will need to be responsible for User Access/ identity, Data, Applications, and Platform. Do we have access to the report assessment so that we can run our assessment internally to make sure it is always compliant?'''
'''♦''' '''We will need to be responsible for User Access/ identity, Data, Applications, and Platform in an IaaS. Do we have access to the report assessment so that we can run our assessment internally to make sure it is always compliant?
'''
<br>
The CCCS CSP IT Security Assessment report is available by contacting contact@cyber.gc.ca. Further, you could consult approved GC Cloud Service Providers' Security Center section for more information.
<br><br>
'''♦''' '''What is the process to register a DNS for a client?
'''
<br>
The process to request a DNS registration is outlined [https://ssc-clouddocs.canada.ca/s/dns-ground-to-public-article?language=en_US here].
<br><br>
'''♦''' '''Is the Cloud Client Enablement team involved in the procurement process for SaaS hosted on cloud platforms other than AWS marketplace or Azure cloud?
'''
<br>
<br>
For Saas RFSA help please reach out to the SaaS RFSA generic inbox: tpsgc.lenqs-saas.pwgsc@tpsgc-pwgsc.gc.ca.
<br><br>
<br><br>
'''♦''' Do you have any additional cloud references we can consult?
'''♦''' '''Where can requests regarding M365 and related features be directed?
'''
<br>
<br>
For inquiries related to M365 please visit M365Central and submit a request using the link: https://forms.office.com/Pages/ResponsePage.aspx?id=lMFb0L-U1kquLh2w8uOPXoKyTLXafpFAtO_a65IvXQRURUhENVdVSk1XTjdQSVBCMzQzTkdHV01INyQlQCN0PWcu
<br>
'''♦''' '''Can departments establish their own CCoE or Cloud Team and is there any funding that can be received to do this?
'''
<br>
It is possible for departments to build their own internal expertise by establishing their own Cloud team, however, there is no funding available for creating your own CCoE.
<br><br>
'''♦''' ''' Are all cloud services Protected B?
'''
<br>
Yes, all cloud services offered under the Framework Agreement are Protected B.
<br><br>
'''♦''' ''' How is an Azure instance that can host a virtual machine acquired?'''
<br>
The CIO department is responsible for all Cloud tenant requests and instances of Azure are a type of cloud tenant service. This request should be directed to CIO Intake / DPI Admission (SSC/SPC) at ciointake-dpiadmission@ssc-spc.gc.ca
<br></br>
'''♦''' '''Do you have any additional cloud references we can consult?
'''
<br>
Yes, see the references below.
Yes, see the references below.
<br>
<br>
'''If you cannot find your topic or have a question that wasn’t answered, please send us an [[ZZCIOBDP@tbs-sct.gc.ca|email]] to reach our team.'''
'''If you cannot find your topic or have a question that wasn’t answered, please send us an [[ZZCIOBDP@tbs-sct.gc.ca|email]] to reach our team.'''
<br>
<br>
</big>
</big>