Difference between revisions of "GC Cloud Infocentre"

Technical Build
Tools to help teams build and configure their cloud services.

• GC Accelerators
  • GC Accelerator for Azure
    • Azure Landing Zone Base Cloud Architecture
  • GC Accelerator for AWS
  • GC Accelerator for GCP
• GC Guardrail implementation - These guides are maintained by each vendor
  • Implementing Guardrails for GCP
  • Implementing Guardrails for Oracle Cloud
• Remote work
  • Secure Remote Working - English version
  • Secure Use of Collaboration Tools - English version
  • Government of Canada Enterprise Security Architecture (ESA) Program - English version
• Office 365
  • Script to automate creation of users (Transport Canada)
• Connectivity
  • Connectivity Readiness Process V 1.5 EN / V 1.5 FR. - For departments wanting to onboard onto the CXP
  • GC Cloud Enablement: Cloud Connection Patterns English
  • Escalation for Urgent Requests to Onboard to the Cloud eXchange Point (CXP)
  • Secure Connectivity Onboarding Priority List - Latest update September 15, 2022 EN
• GCCode Cloud Enablement Repository
• TBS SaaS Assessment Tool (MVP 2)
  • GC SaaS Assessment Tool (MVP2)
  • Demo Video
  • GC Cloud Tiered Assurance Model
  • GC SaaS Assessment Approach / Approche d’évaluation du logiciel comme service (SaaS) du GC

Governance & Policy
Policies and guides to help departments govern their usage of cloud.

• GC Cloud Policies & Direction
  • GC Cloud Adoption Strategy - 2018 Update
  • Government of Canada White Paper: Data Sovereignty and Public Cloud
  • Direction on the Secure Use of Commercial Cloud Services
  • Directive on Service & Digital(Cloud First 4.4.1.9 / Data Residency 4.4.1.10 / Non-Public Cloud GC EARB Assessments 4.1.1.2.4)
    • Guideline on the Directive on Service and Digital (more on data residency)
  • GC Standards on APIs
  • Government of Canada Security Control Profile for Cloud-Based GC IT Services
  • Guidance on Cloud Authentication for the Government of Canada
  • Recommendations for Two-Factor User Authentication Within the Government of Canada Enterprise Domain
  • Standard Operating Procedure for GC Cloud Event Management
• GC Cloud Guardrails
  • GC EARB Guardrails Endorsement (September 19th)
  • GC Cloud Guardrails Tools for Azure
  • GC Cloud Guardrails Prowler Checks for AWS
  • GC Guardrails for MS Office 365
  • GC Cloud Guardrails - Updated Process, Endorsed at GCEARB Aug 2020
• Canadian Centre for Cyber Security Guidance
  • CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada
  • CCCS ITSG-38 Network Security Zoning - Design Considerations for Placement of Services within Zones
  • CCCS ITSP.30.031 V2 User Authentication Guidance for Information Technology Systems
  • CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols
  • CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process
  • Canadian Centre for Cyber Security Publications
• TBS Zero Trust Initiative
• Approach to Centrally Registering Cloud Services (Draft)
• GC Cloud Financial Working Group Final Report & Recommendations
• GC Cloud Intake Process - Single Window for Cloud
• Considerations for Using Microsoft Cognitive Services
• GC Cloud Cost Management Playbook

Automation & Operations
Tools and guides to help departments operate their cloud services.

• GC Event Logging Guidance
• Security Playbook for Information System Solutions
• Standard Operating Procedure for GC Cloud Event Management
• Notify the GC standard platform for sending email from cloud and on-prem environments
• Cloud Adoption Playbooks
• Naming and Tagging Guidance discussion thread(SSC)
• Azure Naming and Tagging Quick Reference
• Azure Naming and Tagging v2.0 EN

Application Migration & Modernisation
Tools and guidance to help migrate application and workloads to the cloud.

• Application Modernisation & Workload Migration Program
• Application Modernisation Guidance
  • Building Modern Applications Using Platform Services
  • Workforce and Skills
  • Evaluating Technology Lock-in and Exit
  • Cloud-based Managed Services (ARCHIVED - No longer in use)
  • API First Architecture Patterns for Public Cloud PaaS

Acquisition
Links to help teams acquire cloud services.

• GC Cloud Brokering Service Portal

Designated users are individuals selected by the departmental CIO and are authorized to submit cloud requests to the GC Cloud Brokering Service Portal on behalf of the department.

• GC Cloud Broker Service Designated User List
• Cloud Documentation Portal (CDP)
• GC Cloud Broker - SCI Assessed Marketplace Products
• Approach for Managed Service Providers (Deck)
• Process for Accounting for Cloud Sub-processors During Procurement (Document - DRAFT)
• Bring Your Own Licence
  • Interim Approach for Marketplace and BYOL
  • SCI Assessed Marketplace Products
• Accounting for Cloud Sub-processors During Procurements (Managed Services on Cloud)

Workforce
Guidance and links to training to grow workforce talent and create a culture of continuous delivery.

• Departmental Cloud Strategies
  • CFIA Cloud Adoption Strategy and Architecture
• GC Public Cloud Roles & Responsibilities (Endorsed by GC EARB 2018-03-22, updated 2022-09-30 to include guardrail activities)
  • Document
  • Matrix

• Community
  • GC Cloud Technical Working Group - Monthly meeting to demonstrate tech. and discuss cloud adoption
  • GC Cloud & Computing Network of Expertise - Assesses all cloud related topics for GC EARB
  • GC Cloud Working Group - No Longer active
  • M365 Community of Practice

• Events
  • Stratosphere 2019
  • Stratosphere 2020
• Cloud First Primer for Senior Management