Difference between revisions of "GC Cloud Infocentre"

From wiki
Jump to navigation Jump to search
m
 
(79 intermediate revisions by 9 users not shown)
Line 1: Line 1:
 +
 
[[FR:L'infocentre de l'infonuagique]]
 
[[FR:L'infocentre de l'infonuagique]]
 
<multilang>
 
<multilang>
 
@en|__NOTOC__
 
@en|__NOTOC__
 +
 +
 +
<div style="text-align: center;  background-color: orange; color: black"><big>
 +
'''Please note that all communication and documentation will be shared through GCxchange moving forward.'''<br>
 +
'''Register through the following link: [https://www.gcx-gce.gc.ca gcx-gce.gc.ca].  Once registered, join our community by becoming a member: [https://gcxgce.sharepoint.com/teams/1000233 Cloud and DevOps Community of Practice ]'''
 +
<p>
 +
'''Veuillez noter que toutes les communications et la documentation seront partagées via GCxchange à l'avenir.'''<br>
 +
'''Inscrivez-vous via le lien suivant :  [https://www.gcx-gce.gc.ca gcx-gce.gc.ca].  Une fois inscrit, rejoignez notre communauté en devenant membre: [https://gcxgce.sharepoint.com/teams/1000233 Communauté de pratique infonuagique et DevOps]''' </big></div>
  
 
<!-- NAV -->
 
<!-- NAV -->
Line 27: Line 36:
  
 
<!-- Title -->
 
<!-- Title -->
 +
 
{|style="width: 80%; background-color:white; border-collapse: collapse;"
 
{|style="width: 80%; background-color:white; border-collapse: collapse;"
 
|-
 
|-
Line 41: Line 51:
 
|style="width: 20%; text-align:right;"|<div style="font-family:Arial; color:#392F41;><big><big><big><big><big>'''What's New?'''<br></big></big></big></big></big><big> </div>
 
|style="width: 20%; text-align:right;"|<div style="font-family:Arial; color:#392F41;><big><big><big><big><big>'''What's New?'''<br></big></big></big></big></big><big> </div>
 
|style="width: 80%; text-align:left; padding-left: 80px"|<hr><hr><div style="font-family:Arial>
 
|style="width: 80%; text-align:left; padding-left: 80px"|<hr><hr><div style="font-family:Arial>
New for February 2021
+
New for July 2022
*[https://www.gcpedia.gc.ca/gcwiki/images/c/c5/GC_Zero_Trust_Security_Concept.pdf TBS Zero Trust Initiative]
+
*[https://github.com/canada-ca/TBS-OCIO-ESP/blob/master/gc_cloud_cost_management_guidance/readme.md GC Cloud Cost Management Playbook]
*[https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en GC Cloud Broker - SCI Assessed Marketplace Products]
+
New for September 2022
*[https://gccollab.ca/file/view/7096018/enapproach-for-managed-service-providers-cloud-sub-processorsfr Approach for Managed Service Providers (Deck)]
+
* GC Public Cloud Roles & Responsibilities (Endorsed by GC EARB 2018-03-22, updated 2022-09-30 to include guardrail activities)
*[https://gccollab.ca/file/view/6617114/enaccounting-for-cloud-sub-processors-during-procurement-processesfr Process for Accounting for Cloud Sub-processors During Procurement (Document - DRAFT)]
+
**[https://gcxgce.sharepoint.com/teams/1000233/SitePages/GC-Public-Cloud-Roles-&-Responsibilities.aspx Document]  
*[https://gccollab.ca/file/view/7095912/enfinancial-model-option-analysisfr Cloud Financial Model Options - GC Cloud Financial Working Group]
+
 
*[https://gccollab.ca/file/view/7047976/enapproach-to-centrally-registering-cloud-servicesfr Approach to Centrally Registering Cloud Services (Draft)]
 
*[https://gcconnex.gc.ca/file/download/74482223 Cloud Operating Model Services Value Proposition]
 
 
</big>
 
</big>
</div>
+
</div>  
 
<br>
 
<br>
 
<hr><hr>
 
<hr><hr>
Line 69: Line 77:
 
*** [https://github.com/canada-ca/Azure_LZBCA-AIZDB Azure Landing Zone Base Cloud Architecture ]
 
*** [https://github.com/canada-ca/Azure_LZBCA-AIZDB Azure Landing Zone Base Cloud Architecture ]
 
** [https://github.com/canada-ca/accelerators_accelerateurs-aws GC Accelerator for AWS]
 
** [https://github.com/canada-ca/accelerators_accelerateurs-aws GC Accelerator for AWS]
* Remote work
+
** [https://github.com/canada-ca/accelerators_accelerateurs-gcp GC Accelerator for GCP]
** Secure Remote Working - [https://wiki.gccollab.ca/Secure_Remote_Working_-_Overview| English version]
+
* GC Guardrail implementation - These guides are maintained by each vendor
** Secure Use of Collaboration Tools - [https://wiki.gccollab.ca/Secure_Use_of_Collaboration_Tools| English version]
+
** [https://github.com/canada-ca/cloud-guardrails-gcp Implementing Guardrails for GCP]
** Government of Canada Enterprise Security Architecture (ESA) Program - [https://www.gcpedia.gc.ca/wiki/Government_of_Canada_Enterprise_Security_Architecture_(ESA)_Program| English version]
+
** [https://github.com/canada-ca/cloud-guardrails-oracle Implementing Guardrails for Oracle Cloud]
 +
<!-- #these two items have no useful content from the vendor.
 +
** [https://github.com/canada-ca/cloud-guardrails-aws Implementing Guardrails for AWS]
 +
** [https://github.com/canada-ca/cloud-guardrails-azure Implementing Guardrails for Azure]
 +
-->
 
* Office 365
 
* Office 365
 
** [https://github.com/canada-ca/accelerators_accelerateurs-azure/tree/master/Deployments/powershell/AzureUserManagement Script to automate creation of users] (Transport Canada)
 
** [https://github.com/canada-ca/accelerators_accelerateurs-azure/tree/master/Deployments/powershell/AzureUserManagement Script to automate creation of users] (Transport Canada)
 
* Connectivity
 
* Connectivity
** Connectivity Readiness Process [[:en:images/d/de/Connection-Readiness-V1.5-EN.docx|V 1.5 EN]] / [[:en:images/1/1d/Preparation-a-la-connectivite-V1.5-FR.docx|V 1.5 FR]].  - For departments wanting to onboard onto the CXP
+
** Connectivity Readiness Process [[:en:images/0/02/Connection-Readiness_V2.4_EN.docx|V 2.4 EN]] / [[:en:images/1/1d/Preparation-a-la-connectivite-V1.5-FR.docx|V 1.5 FR]].  For departments wanting to onboard onto the CXP
** GC Cloud Enablement: Cloud Connection Patterns [[Media:GC Cloud Enablement - Cloud Connection Patterns - GC EARB.pptx|English]]
+
** [https://wiki.gccollab.ca/images/c/cb/BN_Decryption_SCED_Mandatory_or_Optional_v1.1.pdf SSL/TLS Decryption - Mandatory or Optional]
** [[Media:Escalation_for_Urgent_Requests_to_Onboard_to_the_Cloud_eXchange_Point.pdf|Escalation for Urgent Requests to Onboard to the Cloud eXchange Point (CXP)]]
+
** GC Cloud Enablement: Cloud Connection Patterns - [[Media:GC Cloud Enablement - Cloud Connection Patterns - GC EARB.pptx|English]]  
** Secure Connectivity Onboarding Priority List - [https://wiki.gccollab.ca/images/5/53/Secure_Connectivity_Onboarding_Prioritization_Matrix_Jan_5_2021.pdf Latest update Jan 5, 2021 EN]
 
 
* [https://gccode.ssc-spc.gc.ca/GCCloudEnablement GCCode Cloud Enablement Repository]
 
* [https://gccode.ssc-spc.gc.ca/GCCloudEnablement GCCode Cloud Enablement Repository]
 +
* TBS SaaS Assessment Tool (MVP 2)
 +
** [https://www.gcpedia.gc.ca/gcwiki/images/c/c0/MVP2-TBS_SaaS_Assessment_Tool.xlsm GC SaaS Assessment Tool (MVP2)]
 +
** [https://gccollab.ca/file/view/7964117/entbs-saas-assessment-tool-mvp-2-english-demofr Demo Video]
 +
** [https://www.gcpedia.gc.ca/gcwiki/images/c/cb/GC_Cloud_Tiered_Assurance_Model.xlsx GC Cloud Tiered Assurance Model]
 +
** [https://www.gcpedia.gc.ca/gcwiki/images/7/77/GC_SaaS_Assessment_Approach.pdf GC SaaS Assessment Approach / Approche d’évaluation du logiciel comme service (SaaS) du GC]
 +
 
|}
 
|}
  
Line 92: Line 109:
 
Policies and guides to help departments govern their usage of cloud.<br>
 
Policies and guides to help departments govern their usage of cloud.<br>
 
* [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services.html GC Cloud Policies & Direction]
 
* [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services.html GC Cloud Policies & Direction]
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/government-canada-cloud-adoption-strategy.html GC Cloud Adoption Strategy - 2018 Update]
 
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/gc-white-paper-data-sovereignty-public-cloud.html Government of Canada White Paper: Data Sovereignty and Public Cloud]
 
 
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/direction-secure-use-commercial-cloud-services-spin.html Direction on the Secure Use of Commercial Cloud Services]
 
** [https://www.canada.ca/en/government/system/digital-government/digital-government-innovations/cloud-services/direction-secure-use-commercial-cloud-services-spin.html Direction on the Secure Use of Commercial Cloud Services]
 
** [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Directive on Service & Digital](Cloud First 4.4.1.9 / Data Residency 4.4.1.10 / Non-Public Cloud GC EARB Assessments 4.1.1.2.4)
 
** [https://www.tbs-sct.gc.ca/pol/doc-eng.aspx?id=32601 Directive on Service & Digital](Cloud First 4.4.1.9 / Data Residency 4.4.1.10 / Non-Public Cloud GC EARB Assessments 4.1.1.2.4)
Line 107: Line 122:
 
** [https://github.com/canada-ca/cloud-guardrails-aws/tree/master/tools/prowler GC Cloud Guardrails Prowler Checks for AWS]
 
** [https://github.com/canada-ca/cloud-guardrails-aws/tree/master/tools/prowler GC Cloud Guardrails Prowler Checks for AWS]
 
** [https://github.com/canada-ca/cloud-guardrails-O365 GC Guardrails for MS Office 365]
 
** [https://github.com/canada-ca/cloud-guardrails-O365 GC Guardrails for MS Office 365]
 +
** [[Media:GC_Cloud_Guardrails_GCEARB_changes_Aug_2020.pdf|GC Cloud Guardrails - Updated Process, Endorsed at GCEARB Aug 2020]]
 
* Canadian Centre for Cyber Security Guidance
 
* Canadian Centre for Cyber Security Guidance
 
** [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada]
 
** [https://cyber.gc.ca/en/guidance/baseline-security-requirements-network-security-zones-government-canada-itsg-22 CCCS ITSG-22 Baseline Security Requirements for Network Security Zones in the Government of Canada]
Line 113: Line 129:
 
** [https://www.cse-cst.gc.ca/en/node/1830/html/26507 CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols]
 
** [https://www.cse-cst.gc.ca/en/node/1830/html/26507 CCCS ITSP.40.062 Guidance on Securely Configuring Network Protocols]
 
** [https://cyber.gc.ca/en/guidance/cloud-service-provider-information-technology-security-assessment-process-itsm50100 CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process]
 
** [https://cyber.gc.ca/en/guidance/cloud-service-provider-information-technology-security-assessment-process-itsm50100 CCCS ITSM.50.100 Cloud Service Provider Information Technology Security Assessment Process]
* [[Media:Data_resdiency_and_amazon_connect.pdf| Data Residency and Amazon Connect]]
+
**      [https://cyber.gc.ca/en/publications Canadian Centre for Cyber Security Publications]
 +
<!--* [[Media:Data_resdiency_and_amazon_connect.pdf| Data Residency and Amazon Connect]]-->
 
*[https://www.gcpedia.gc.ca/gcwiki/images/c/c5/GC_Zero_Trust_Security_Concept.pdf TBS Zero Trust Initiative]  
 
*[https://www.gcpedia.gc.ca/gcwiki/images/c/c5/GC_Zero_Trust_Security_Concept.pdf TBS Zero Trust Initiative]  
*[https://gccollab.ca/file/view/7047976/enapproach-to-centrally-registering-cloud-servicesfr Approach to Centrally Registering Cloud Services (Draft)]
+
*[https://www.gcpedia.gc.ca/gcwiki/images/7/7c/Considerations_for_Using_Microsoft_Cognitive_Services.pdf Considerations for Using Microsoft Cognitive Services]
 +
*[https://github.com/canada-ca/TBS-OCIO-ESP/blob/master/gc_cloud_cost_management_guidance/readme.md GC Cloud Cost Management Playbook]
 
|}
 
|}
  
Line 128: Line 146:
 
Tools and guides to help departments operate their cloud services.<br>
 
Tools and guides to help departments operate their cloud services.<br>
 
* [https://www.gcpedia.gc.ca/gcwiki/images/e/e3/GC_Event_Logging_Strategy.pdf GC Event Logging Guidance]
 
* [https://www.gcpedia.gc.ca/gcwiki/images/e/e3/GC_Event_Logging_Strategy.pdf GC Event Logging Guidance]
* [https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/cloud-services/security-playbook-information-system-solutions-cloud.html Security Playbook for Information System Solutions]
 
 
* [https://www.gcpedia.gc.ca/gcwiki/images/5/5f/GC_Cloud_Event_Management_Standard_Operating_Procedure.pdf Standard Operating Procedure for GC Cloud Event Management]
 
* [https://www.gcpedia.gc.ca/gcwiki/images/5/5f/GC_Cloud_Event_Management_Standard_Operating_Procedure.pdf Standard Operating Procedure for GC Cloud Event Management]
* [https://digital.canada.ca/2019/11/26/introducing-notify/ Notify] the GC standard platform for sending email from cloud and on-prem environments
 
 
* [[Media:CPMSD - CCoE - Organizational Change Management - v1 (EN) (1).pptx|Cloud Adoption Playbooks]]
 
* [[Media:CPMSD - CCoE - Organizational Change Management - v1 (EN) (1).pptx|Cloud Adoption Playbooks]]
 
* [https://gccollab.ca/file/view/3634499/ennaming-and-tagging-standardsfr#elgg-object-4383750 Naming and Tagging Guidance discussion thread(SSC)]
 
* [https://gccollab.ca/file/view/3634499/ennaming-and-tagging-standardsfr#elgg-object-4383750 Naming and Tagging Guidance discussion thread(SSC)]
Line 144: Line 160:
 
|style="border-left: 10px solid #FF792C; box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19); color: black; background-color: white; font-size:1.2em;" |  
 
|style="border-left: 10px solid #FF792C; box-shadow: 0 4px 8px 0 rgba(0, 0, 0, 0.2), 0 6px 20px 0 rgba(0, 0, 0, 0.19); color: black; background-color: white; font-size:1.2em;" |  
  
<span style="font-size: 1.5em;">Migration</span><br>
+
<span style="font-size: 1.5em;">Application Migration & Modernization</span><br>
 
Tools and guidance to help migrate application and workloads to the cloud.<br>
 
Tools and guidance to help migrate application and workloads to the cloud.<br>
 
* [https://wiki.gccollab.ca/Application_Modernization Application Modernisation & Workload Migration Program]
 
* [https://wiki.gccollab.ca/Application_Modernization Application Modernisation & Workload Migration Program]
Line 151: Line 167:
 
**  [[Media:05_IT_skills_and_Workforce_EN.pdf|Workforce and Skills]]
 
**  [[Media:05_IT_skills_and_Workforce_EN.pdf|Workforce and Skills]]
 
**  [[Media:02_-_Lockin_EN.pdf|Evaluating Technology Lock-in and Exit]]
 
**  [[Media:02_-_Lockin_EN.pdf|Evaluating Technology Lock-in and Exit]]
**  [[Media:04 _ Cloud based Managed Services.pdf|Cloud-based Managed Services]]
+
**  [[Media:API_First_Architecture_Patterns_EN_Endorsed.docx|API First Architecture Patterns for Public Cloud PaaS]]
 
|}
 
|}
  
Line 165: Line 181:
 
Designated users are individuals selected by the departmental CIO and are authorized to submit cloud requests to the GC Cloud Brokering Service Portal on behalf of the department.<br>  
 
Designated users are individuals selected by the departmental CIO and are authorized to submit cloud requests to the GC Cloud Brokering Service Portal on behalf of the department.<br>  
 
* [https://gccollab.ca/file/view/5785957/engc-cloud-broker-service-designated-user-listfr GC Cloud Broker Service Designated User List]
 
* [https://gccollab.ca/file/view/5785957/engc-cloud-broker-service-designated-user-listfr GC Cloud Broker Service Designated User List]
 +
* [https://ssc-clouddocs.canada.ca Cloud Documentation Portal (CDP)]
 
*[https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en GC Cloud Broker - SCI Assessed Marketplace Products]
 
*[https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en GC Cloud Broker - SCI Assessed Marketplace Products]
 
*[https://gccollab.ca/file/view/7096018/enapproach-for-managed-service-providers-cloud-sub-processorsfr Approach for Managed Service Providers (Deck)]
 
*[https://gccollab.ca/file/view/7096018/enapproach-for-managed-service-providers-cloud-sub-processorsfr Approach for Managed Service Providers (Deck)]
 
*[https://gccollab.ca/file/view/6617114/enaccounting-for-cloud-sub-processors-during-procurement-processesfr Process for Accounting for Cloud Sub-processors During Procurement (Document - DRAFT)]
 
*[https://gccollab.ca/file/view/6617114/enaccounting-for-cloud-sub-processors-during-procurement-processesfr Process for Accounting for Cloud Sub-processors During Procurement (Document - DRAFT)]
 +
* Bring Your Own Licence
 +
** [https://gcconnex.gc.ca/file/download/45648502 Interim Approach for Marketplace and BYOL]
 +
** [https://gcconnex.gc.ca/file/view/62841157/gc-cloud-broker-sci-assessed-marketplace-products?language=en SCI Assessed Marketplace Products]
 +
* [[Media:01_Accoutning_for_Cloud_Sub_Processor_During_Procurements_EN.pdf | Accounting for Cloud Sub-processors During Procurements (Managed Services on Cloud)]]
 
|}
 
|}
  
Line 180: Line 201:
 
* Departmental Cloud Strategies  
 
* Departmental Cloud Strategies  
 
** [[Media:CFIA_Cloud_Adoption_Strategy_and_Architecture.pdf  | CFIA Cloud Adoption Strategy and Architecture]]
 
** [[Media:CFIA_Cloud_Adoption_Strategy_and_Architecture.pdf  | CFIA Cloud Adoption Strategy and Architecture]]
* GC Public Cloud Roles & Responsibilities (Endorsed by GC EARB 2018-03-22)
 
** [https://gccollab.ca/file/view/1785972/engc-cloud-roles-and-responsibilities-v1fr Document]
 
** [https://gccollab.ca/file/view/1785973/engc-cloud-roles-and-responsibilities-matrixfr RACI Matrix]
 
  
 
* Community
 
* Community
 
** [https://gccollab.ca/groups/profile/2683084/encloud-technical-working-groupfrgroupe-de-travail-technique-infonuagique-gtti GC Cloud Technical Working Group] - Monthly meeting to demonstrate tech. and discuss cloud adoption
 
** [https://gccollab.ca/groups/profile/2683084/encloud-technical-working-groupfrgroupe-de-travail-technique-infonuagique-gtti GC Cloud Technical Working Group] - Monthly meeting to demonstrate tech. and discuss cloud adoption
 
** [https://gccollab.ca/groups/profile/2749615/encloud-and-computing-network-of-expertisefrru00e9seau-dexpertise-sur-infonuage-et-linformatique GC Cloud & Computing Network of Expertise] - Assesses all cloud related topics for GC EARB
 
** [https://gccollab.ca/groups/profile/2749615/encloud-and-computing-network-of-expertisefrru00e9seau-dexpertise-sur-infonuage-et-linformatique GC Cloud & Computing Network of Expertise] - Assesses all cloud related topics for GC EARB
** [https://gccollab.ca/groups/profile/1785962/engc-cloud-working-groupfr GC Cloud Working Group] - No Longer active
 
 
** [https://gccollab.ca/groups/profile/2014905/ M365 Community of Practice]
 
** [https://gccollab.ca/groups/profile/2014905/ M365 Community of Practice]
  
Line 196: Line 213:
  
 
|}
 
|}
 +
  
 
==About==
 
==About==
This site is maintained by the Core Technologies team at the Treasury Board of Canada Secretariat, Office of the Chief Information Officer
+
This site is maintained by the Modern Technologies team at the Treasury Board of Canada Secretariat, Office of the Chief Information Officer
  
 
</multilang>
 
</multilang>

Latest revision as of 17:46, 19 April 2024


Please note that all communication and documentation will be shared through GCxchange moving forward.
Register through the following link: gcx-gce.gc.ca. Once registered, join our community by becoming a member: Cloud and DevOps Community of Practice

Veuillez noter que toutes les communications et la documentation seront partagées via GCxchange à l'avenir.
Inscrivez-vous via le lien suivant : gcx-gce.gc.ca. Une fois inscrit, rejoignez notre communauté en devenant membre: Communauté de pratique infonuagique et DevOps


Home Blogs | Video FAQs About Security] Français


Stratosphere logo.png Cloud Infocentre
Everything you need to know for Cloud & DevOps



What's New?

New for July 2022

New for September 2022

  • GC Public Cloud Roles & Responsibilities (Endorsed by GC EARB 2018-03-22, updated 2022-09-30 to include guardrail activities)



Technical Build
Tools to help teams build and configure their cloud services.


Governance & Policy
Policies and guides to help departments govern their usage of cloud.


Automation & Operations
Tools and guides to help departments operate their cloud services.


Application Migration & Modernization
Tools and guidance to help migrate application and workloads to the cloud.


Acquisition
Links to help teams acquire cloud services.

Designated users are individuals selected by the departmental CIO and are authorized to submit cloud requests to the GC Cloud Brokering Service Portal on behalf of the department.


Workforce
Guidance and links to training to grow workforce talent and create a culture of continuous delivery.


About[edit | edit source]

This site is maintained by the Modern Technologies team at the Treasury Board of Canada Secretariat, Office of the Chief Information Officer


Retrieved from "https://wiki.gccollab.ca/index.php?title=GC_Cloud_Infocentre&oldid=118687"