Difference between revisions of "GC Cloud Infocentre"

From wiki
Jump to: navigation, search
m
 
(55 intermediate revisions by 10 users not shown)
Line 41: Line 41:
 
|style="width: 20%; text-align:right;"|<div style="font-family:Arial; color:#392F41;><big><big><big><big><big>'''What's New?'''<br></big></big></big></big></big><big> </div>
 
|style="width: 20%; text-align:right;"|<div style="font-family:Arial; color:#392F41;><big><big><big><big><big>'''What's New?'''<br></big></big></big></big></big><big> </div>
 
|style="width: 80%; text-align:left; padding-left: 80px"|<hr><hr><div style="font-family:Arial>
 
|style="width: 80%; text-align:left; padding-left: 80px"|<hr><hr><div style="font-family:Arial>
* Connectivity Readiness Process [[Media:Connection-Readiness-V1.3-EN.docx|V 1.3 EN]]
+
New for February 2021
* [https://gccollab.ca/file/group/2749615/all#4057529 DRAFT Application Modernisation Guidance ]
+
*[[Media:GCCPWG_-_Single_Window_for_Onboarding_-_FINAL.pdf|GC Cloud Intake Process - Single Window for Cloud]]
* [https://github.com/canada-ca/cloud-guardrails-O365 GC Guardrails for MS Office 365]
+
*[[Media:Financial_Model_Working_Group_Option_Analysis_FINAL_EN.pdf|GC Cloud Financial Working Group Final Report & Recommendations]]
* [https://github.com/canada-ca/accelerators_accelerateurs-azure/tree/master/Deployments/powershell/AzureUserManagement Script to automate creation of users] (Transport Canada)
+
*[[Media:API_First_Architecture_Patterns_EN_Endorsed.docx|API First Architecture Patterns for Public Cloud PaaS]]
* [https://digital.canada.ca/2019/11/26/introducing-notify/ Notify] the GC standard platform for sending email from cloud and on-prem
+
*[https://www.gcpedia.gc.ca/gcwiki/images/c/c5/GC_Zero_Trust_Security_Concept.pdf TBS Zero Trust Initiative]  
 +
*[https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en GC Cloud Broker - SCI Assessed Marketplace Products]
 +
*[https://gccollab.ca/file/view/7096018/enapproach-for-managed-service-providers-cloud-sub-processorsfr Approach for Managed Service Providers (Deck)]
 +
*[https://gccollab.ca/file/view/6617114/enaccounting-for-cloud-sub-processors-during-procurement-processesfr Process for Accounting for Cloud Sub-processors During Procurement (Document - DRAFT)]
 +
*[https://gccollab.ca/file/view/7095912/enfinancial-model-option-analysisfr Cloud Financial Model Options - GC Cloud Financial Working Group]
 +
*[https://gccollab.ca/file/view/7047976/enapproach-to-centrally-registering-cloud-servicesfr Approach to Centrally Registering Cloud Services (Draft)]
 +
*[https://gcconnex.gc.ca/file/download/74482223 Cloud Operating Model Services Value Proposition]
 
</big>
 
</big>
 
</div>
 
</div>
Line 64: Line 70:
 
* GC Accelerators
 
* GC Accelerators
 
** [https://github.com/canada-ca/accelerators_accelerateurs-azure GC Accelerator for Azure]
 
** [https://github.com/canada-ca/accelerators_accelerateurs-azure GC Accelerator for Azure]
 +
*** [https://github.com/canada-ca/Azure_LZBCA-AIZDB Azure Landing Zone Base Cloud Architecture ]
 
** [https://github.com/canada-ca/accelerators_accelerateurs-aws GC Accelerator for AWS]
 
** [https://github.com/canada-ca/accelerators_accelerateurs-aws GC Accelerator for AWS]
 +
** [https://github.com/canada-ca/accelerators_accelerateurs-gcp GC Accelerator for GCP]
 +
* GC Guardrail implementation - These guides are maintained by each vendor
 +
** [https://github.com/canada-ca/cloud-guardrails-gcp Implementing Guardrails for GCP]
 +
** [https://github.com/canada-ca/cloud-guardrails-oracle Implementing Guardrails for Oracle Cloud]
 +
<!-- #these two items have no useful content from the vendor.
 +
** [https://github.com/canada-ca/cloud-guardrails-aws Implementing Guardrails for AWS]
 +
** [https://github.com/canada-ca/cloud-guardrails-azure Implementing Guardrails for Azure]
 +
-->
 +
* Remote work
 +
** Secure Remote Working - [https://wiki.gccollab.ca/Secure_Remote_Working_-_Overview| English version]
 +
** Secure Use of Collaboration Tools - [https://wiki.gccollab.ca/Secure_Use_of_Collaboration_Tools| English version]
 +
** Government of Canada Enterprise Security Architecture (ESA) Program - [https://www.gcpedia.gc.ca/wiki/Government_of_Canada_Enterprise_Security_Architecture_(ESA)_Program| English version]
 
* Office 365
 
* Office 365
 
** [https://github.com/canada-ca/accelerators_accelerateurs-azure/tree/master/Deployments/powershell/AzureUserManagement Script to automate creation of users] (Transport Canada)
 
** [https://github.com/canada-ca/accelerators_accelerateurs-azure/tree/master/Deployments/powershell/AzureUserManagement Script to automate creation of users] (Transport Canada)
 
* Connectivity
 
* Connectivity
** Connectivity Readiness Process [[Media:Connection-Readiness-V1.3-EN.docx|V 1.3 EN]] - For departments wanting to onboard onto the CXP
+
** Connectivity Readiness Process [[:en:images/d/de/Connection-Readiness-V1.5-EN.docx|V 1.5 EN]] / [[:en:images/1/1d/Preparation-a-la-connectivite-V1.5-FR.docx|V 1.5 FR]].  - For departments wanting to onboard onto the CXP
** GC Cloud Enablement: Cloud Connection Patterns [[Media:GC Cloud Enablement - Cloud Connection Patterns - GC EARB.pptx|English]] - For departments seeking services from the Secure Cloud Enablement and Defence (SCED) initiative
+
** GC Cloud Enablement: Cloud Connection Patterns [[Media:GC Cloud Enablement - Cloud Connection Patterns - GC EARB.pptx|English]]  
 +
** [[Media:Escalation_for_Urgent_Requests_to_Onboard_to_the_Cloud_eXchange_Point.pdf|Escalation for Urgent Requests to Onboard to the Cloud eXchange Point (CXP)]]
 +
** Secure Connectivity Onboarding Priority List - [https://wiki.gccollab.ca/images/2/2a/Secure_Connectivity_Onboarding_Prioritization_Matrix_April_12_2021_v.0.3.pdf Latest update April 12, 2021 EN]
 
* [https://gccode.ssc-spc.gc.ca/GCCloudEnablement GCCode Cloud Enablement Repository]
 
* [https://gccode.ssc-spc.gc.ca/GCCloudEnablement GCCode Cloud Enablement Repository]
 +
 
|}
 
|}
  
Line 81: Line 103:
 
<span style="font-size: 1.5em;">Governance & Policy</span><br>
 
<span style="font-size: 1.5em;">Governance & Policy</span><br>
 
Policies and guides to help departments govern their usage of cloud.<br>
 
Policies and guides to help departments govern their usage of cloud.<br>
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services.html GC Cloud Policies & Direction]
+
* [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services.html GC Cloud Policies & Direction]
** [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/government-canada-cloud-adoption-strategy.html GC Cloud Adoption Strategy - 2018 Update]
+
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/government-canada-cloud-adoption-strategy.html GC Cloud Adoption Strategy - 2018 Update]
** [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Government of Canada White Paper: Data Sovereignty and Public Cloud]
+
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Government of Canada White Paper: Data Sovereignty and Public Cloud]
** [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/direction-secure-use-commercial-cloud-services-spin.html Direction on the Secure Use of Commercial Cloud Services]
+
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/direction-secure-use-commercial-cloud-services-spin.html Direction on the Secure Use of Commercial Cloud Services]
 
** [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Directive on Service & Digital](Cloud First 4.4.1.9 / Data Residency 4.4.1.10 / Non-Public Cloud GC EARB Assessments 4.1.1.2.4)
 
** [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Directive on Service & Digital](Cloud First 4.4.1.9 / Data Residency 4.4.1.10 / Non-Public Cloud GC EARB Assessments 4.1.1.2.4)
 
*** [https://gcconnex.gc.ca/file/view/59536059/tb-guideline-service-digital-pdf?language=en Guideline on the Directive on Service and Digital] (more on data residency)
 
*** [https://gcconnex.gc.ca/file/view/59536059/tb-guideline-service-digital-pdf?language=en Guideline on the Directive on Service and Digital] (more on data residency)
Line 97: Line 119:
 
** [https://github.com/canada-ca/cloud-guardrails-aws/tree/master/tools/prowler GC Cloud Guardrails Prowler Checks for AWS]
 
** [https://github.com/canada-ca/cloud-guardrails-aws/tree/master/tools/prowler GC Cloud Guardrails Prowler Checks for AWS]
 
** [https://github.com/canada-ca/cloud-guardrails-O365 GC Guardrails for MS Office 365]
 
** [https://github.com/canada-ca/cloud-guardrails-O365 GC Guardrails for MS Office 365]
 +
** [[Media:GC_Cloud_Guardrails_GCEARB_changes_Aug_2020.pdf|GC Cloud Guardrails - Updated Process, Endorsed at GCEARB Aug 2020]]
 
* Canadian Centre for Cyber Security Guidance
 
* Canadian Centre for Cyber Security Guidance
 
** [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada]
 
** [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada]
Line 103: Line 126:
 
** [https://www.cse-cst.gc.ca/en/node/1830/html/26507 CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols]
 
** [https://www.cse-cst.gc.ca/en/node/1830/html/26507 CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols]
 
** [https://cyber.gc.ca/en/guidance/cloud-service-provider-information-technology-security-assessment-process-itsm50100 CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process]
 
** [https://cyber.gc.ca/en/guidance/cloud-service-provider-information-technology-security-assessment-process-itsm50100 CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process]
* [Data_resdiency_and_amazon_connect.pdf|Data Residency and Amazon Connect]
+
* [[Media:Data_resdiency_and_amazon_connect.pdf| Data Residency and Amazon Connect]]
 +
*[https://www.gcpedia.gc.ca/gcwiki/images/c/c5/GC_Zero_Trust_Security_Concept.pdf TBS Zero Trust Initiative]
 +
*[https://gccollab.ca/file/view/7047976/enapproach-to-centrally-registering-cloud-servicesfr Approach to Centrally Registering Cloud Services (Draft)]
 +
*[[Media:Financial_Model_Working_Group_Option_Analysis_FINAL_EN.pdf|GC Cloud Financial Working Group Final Report & Recommendations]]
 +
*[[Media:GCCPWG_-_Single_Window_for_Onboarding_-_FINAL.pdf|GC Cloud Intake Process - Single Window for Cloud]]
 
|}
 
|}
  
Line 118: Line 145:
 
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/security-playbook-information-system-solutions-cloud.html Security Playbook for Information System Solutions]
 
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/security-playbook-information-system-solutions-cloud.html Security Playbook for Information System Solutions]
 
* [https://www.gcpedia.gc.ca/gcwiki/images/5/5f/GC_Cloud_Event_Management_Standard_Operating_Procedure.pdf Standard Operating Procedure for GC Cloud Event Management]
 
* [https://www.gcpedia.gc.ca/gcwiki/images/5/5f/GC_Cloud_Event_Management_Standard_Operating_Procedure.pdf Standard Operating Procedure for GC Cloud Event Management]
* [https://gccollab.ca/file/view/3634499/ennaming-and-tagging-standardsfr#elgg-object-4383750 Naming and Tagging Guidance (SSC)]
 
 
* [https://digital.canada.ca/2019/11/26/introducing-notify/ Notify] the GC standard platform for sending email from cloud and on-prem environments
 
* [https://digital.canada.ca/2019/11/26/introducing-notify/ Notify] the GC standard platform for sending email from cloud and on-prem environments
 +
* [[Media:CPMSD - CCoE - Organizational Change Management - v1 (EN) (1).pptx|Cloud Adoption Playbooks]]
 +
* [https://gccollab.ca/file/view/3634499/ennaming-and-tagging-standardsfr#elgg-object-4383750 Naming and Tagging Guidance discussion thread(SSC)]
 +
* [https://wiki.gccollab.ca/images/5/54/Azure_Naming_and_Tagging_Quick_Reference.docx Azure Naming and Tagging Quick Reference]
 +
* [https://wiki.gccollab.ca/images/6/6f/Azure_Naming_and_Tagging_v_2.0.pdf Azure Naming and Tagging v2.0 EN]
 
|}
 
|}
  
Line 129: Line 159:
 
|style="border-left: 10px solid #FF792C; box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19); color: black; background-color: white; font-size:1.2em;" |  
 
|style="border-left: 10px solid #FF792C; box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19); color: black; background-color: white; font-size:1.2em;" |  
  
<span style="font-size: 1.5em;">Migration</span><br>
+
<span style="font-size: 1.5em;">Application Migration & Modernisation</span><br>
 
Tools and guidance to help migrate application and workloads to the cloud.<br>
 
Tools and guidance to help migrate application and workloads to the cloud.<br>
 
* [https://wiki.gccollab.ca/Application_Modernization Application Modernisation & Workload Migration Program]
 
* [https://wiki.gccollab.ca/Application_Modernization Application Modernisation & Workload Migration Program]
Line 135: Line 165:
 
**  [[Media:01_Building_Modern_Applications_Using_Platform_Services_EN.pdf|Building Modern Applications Using Platform Services]]
 
**  [[Media:01_Building_Modern_Applications_Using_Platform_Services_EN.pdf|Building Modern Applications Using Platform Services]]
 
**  [[Media:05_IT_skills_and_Workforce_EN.pdf|Workforce and Skills]]
 
**  [[Media:05_IT_skills_and_Workforce_EN.pdf|Workforce and Skills]]
 +
**  [[Media:02_-_Lockin_EN.pdf|Evaluating Technology Lock-in and Exit]]
 +
**  [[Media:04 _ Cloud based Managed Services.pdf|Cloud-based Managed Services]]
 +
**  [[Media:API_First_Architecture_Patterns_EN_Endorsed.docx|API First Architecture Patterns for Public Cloud PaaS]]
 
|}
 
|}
  
Line 145: Line 178:
 
<span style="font-size: 1.5em;">Acquisition</span><br>
 
<span style="font-size: 1.5em;">Acquisition</span><br>
 
Links to help teams acquire cloud services. <br>
 
Links to help teams acquire cloud services. <br>
* [https://cloud-broker.canada.ca/s/?language=en_CA GC Cloud Brokering site]
+
* [https://cloud-broker.canada.ca/s/?language=en_CA GC Cloud Brokering Service Portal]
 +
Designated users are individuals selected by the departmental CIO and are authorized to submit cloud requests to the GC Cloud Brokering Service Portal on behalf of the department.<br>
 +
* [https://gccollab.ca/file/view/5785957/engc-cloud-broker-service-designated-user-listfr GC Cloud Broker Service Designated User List]
 +
*[https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en GC Cloud Broker - SCI Assessed Marketplace Products]
 +
*[https://gccollab.ca/file/view/7096018/enapproach-for-managed-service-providers-cloud-sub-processorsfr Approach for Managed Service Providers (Deck)]
 +
*[https://gccollab.ca/file/view/6617114/enaccounting-for-cloud-sub-processors-during-procurement-processesfr Process for Accounting for Cloud Sub-processors During Procurement (Document - DRAFT)]
 +
* Bring Your Own Licence
 +
** [https://gcconnex.gc.ca/file/download/45648502 Interim Approach for Marketplace and BYOL]
 +
** [https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en SCI Assessed Marketplace Products]
 
|}
 
|}
  
Line 156: Line 197:
 
<span style="font-size: 1.5em;">Workforce</span><br>
 
<span style="font-size: 1.5em;">Workforce</span><br>
 
Guidance and links to training to grow workforce talent and create a culture of continuous delivery.<br>
 
Guidance and links to training to grow workforce talent and create a culture of continuous delivery.<br>
 +
* Departmental Cloud Strategies
 +
** [[Media:CFIA_Cloud_Adoption_Strategy_and_Architecture.pdf  | CFIA Cloud Adoption Strategy and Architecture]]
 
* GC Public Cloud Roles & Responsibilities (Endorsed by GC EARB 2018-03-22)
 
* GC Public Cloud Roles & Responsibilities (Endorsed by GC EARB 2018-03-22)
 
** [https://gccollab.ca/file/view/1785972/engc-cloud-roles-and-responsibilities-v1fr Document]  
 
** [https://gccollab.ca/file/view/1785972/engc-cloud-roles-and-responsibilities-v1fr Document]  
Line 161: Line 204:
  
 
* Community
 
* Community
** GC Cloud Technical Working Group - Monthly meeting to demonstrate tech. and discuss cloud adoption
+
** [https://gccollab.ca/groups/profile/2683084/encloud-technical-working-groupfrgroupe-de-travail-technique-infonuagique-gtti GC Cloud Technical Working Group] - Monthly meeting to demonstrate tech. and discuss cloud adoption
 
** [https://gccollab.ca/groups/profile/2749615/encloud-and-computing-network-of-expertisefrru00e9seau-dexpertise-sur-infonuage-et-linformatique GC Cloud & Computing Network of Expertise] - Assesses all cloud related topics for GC EARB
 
** [https://gccollab.ca/groups/profile/2749615/encloud-and-computing-network-of-expertisefrru00e9seau-dexpertise-sur-infonuage-et-linformatique GC Cloud & Computing Network of Expertise] - Assesses all cloud related topics for GC EARB
 
** [https://gccollab.ca/groups/profile/1785962/engc-cloud-working-groupfr GC Cloud Working Group] - No Longer active
 
** [https://gccollab.ca/groups/profile/1785962/engc-cloud-working-groupfr GC Cloud Working Group] - No Longer active
** [https://gccollab.ca/groups/profile/2014905/enoffice-365-community-of-practicefrcommunautu00e9-de-pratique-office-365 Office 365 Community of Practice]
+
** [https://gccollab.ca/groups/profile/2014905/ M365 Community of Practice]
  
 
*Events
 
*Events
 
** [[Stratosphere2019|Stratosphere 2019]]
 
** [[Stratosphere2019|Stratosphere 2019]]
 +
** [[Stratosphere2020|Stratosphere 2020]]
 
* [https://gccollab.ca/file/view/1785967/cloud-first-primer-for-senior-managementpdf Cloud First Primer for Senior Management]
 
* [https://gccollab.ca/file/view/1785967/cloud-first-primer-for-senior-managementpdf Cloud First Primer for Senior Management]
  

Latest revision as of 15:11, 14 April 2021


Home Blogs | Video FAQs About Security] Français


Stratosphere logo.png Cloud Infocentre
Everything you need to know for Cloud & DevOps



What's New?






Technical Build
Tools to help teams build and configure their cloud services.


Governance & Policy
Policies and guides to help departments govern their usage of cloud.


Automation & Operations
Tools and guides to help departments operate their cloud services.


Application Migration & Modernisation
Tools and guidance to help migrate application and workloads to the cloud.


Acquisition
Links to help teams acquire cloud services.

Designated users are individuals selected by the departmental CIO and are authorized to submit cloud requests to the GC Cloud Brokering Service Portal on behalf of the department.


Workforce
Guidance and links to training to grow workforce talent and create a culture of continuous delivery.

About[edit | edit source]

This site is maintained by the Core Technologies team at the Treasury Board of Canada Secretariat, Office of the Chief Information Officer