Uploaded byKBIZEAU
PDF, PPTX359 views

Itir oct0714-afac report-en

The presentation outlines the updates from the Architecture Framework Advisory Committee (AFAC) regarding cyber and IT security, focusing on device security and shared services within Canada's government. Key objectives include enhancing security services, supporting integration with cloud technologies, and establishing a framework for device security strategies. Upcoming steps involve further exploration of cloud security and soliciting feedback from AFAC members to inform future initiatives.

Embed presentation

Download as PDF, PPTX
Architecture Framework Advisory Committee Update Presentation to the Information Technology Infrastructure Roundtable October 7, 2014 Benoît Long, Senior Assistant Deputy Minister, Transformation, Service Strategy and Design and Chair of the Architecture Framework Advisory Committee
Outline Context: Architecture Framework Advisory Committee (AFAC) Meetings and Topics AFAC Consultation Roadmap on Cyber and IT Security Device Security Objectives Defined What Shared Services Canada (SSC) Has Heard Next Steps 2
3 Workplace Technology Devices SHAREDSERVICESCANADAOUTCOMESAFACMEETINGS Cyber and IT Security Framework and Device Security Cloud Security Future Meeting Topics – timing to be confirmed* Jan 20 Feb 24 July 7 Sept 8 Nov 4 Dec 1 2014 2014 Context – Architecture Framework Advisory Committee Meetings and Topics 2015 Mar 14 Apr 16 May 26  Cyber and IT Framework and Device Security Defined Sept 2014  Enterprise Architecture library available on SSC Internet site Feb 2014 • Architecture Standards • SSC Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) • Directories • IT Security Standards 2014
Architecture Framework Advisory Committee’s Consultation Roadmap – Cyber and IT Security STRATEGY KEY ACTIVITIES 2014–15 AFAC INPUT  Recommendations for Strategic Questions  Guiding Principles/ Best Practices  Experience/Case Studies  Risks/Success Factors Cyber and IT Security Framework/ Device Security Service Bundles and Delivery Model Licensing Models and Solutions Framework and End-State Service Strategy Enterprise Procurement Functional Direction • Meetings • Demos • Written Submissions Formal Industry Engagement July 7 To Be Determined 4 Sept 8 Nov 4 Dec 1 Cloud Security Strategy (including Device Security)
Device Security – Objectives 5 • Enhance security services required to mitigate from evolving threats • Support for security service integration with new cloud and mobile technologies • Support Treasury Board’s IT Policy Implementation Notice (ITPIN) implementation regarding the secure use of portable data storage devices within the Government of Canada • Address the need for an enterprise procurement vehicle for device security software • Existing device security software licenses renewal to maintain operations (e.g. Keeping the Lights On) • Multiple device security disparate solutions and policy application • Standardization to drive efficiencies and cost savings across the GC Increase Security Improve Service Generate Savings
Device Security – Defined What is Device Security? • Device security refers to the protection of Government of Canada (GC) devices that are used to store and process data through the use of various information technology (IT) safeguard services. What GC Devices are we looking to protect? • Backend devices (Data Server Infrastructure) • Frontend devices (Traditional personal computers, laptops, Thin- Clients/Virtual Deployments) • Mobile Devices (Smartphones, Tablets) • ~569,000 devices (~100,000 data centre devices, ~469,000 workplace technology devices) Why do we need Device Security? • Safeguard GC devices and data from various forms of malware and intrusion • Maintain the confidentiality, integrity and availability of infrastructure information assets 6
What Shared Services Canada Heard from the Architecture Framework Advisory Committee Address “legacy” requirements separately from “end state” De-couple procurements for DC and WTD as their security requirements are different Security continuously evolving to meet endlessly changing landscape Transition from network to data centric approach Cloud Security increases requirements for data encryption Build a centralised public key infrastructure (PKI)/certificate authorities Leverage “location based” data access (e.g. no Protected B in a public zone) Develop and enforce hardening and standards Metrics are crucial – defines how success is measured Look into behavioural security analysis for advanced attack detection Investigate sandbox and isolation techniques (micro-segmentation) 7
Revised Device Security Strategy Address legacy requirements by leveraging existing procurement vehicles De-couple data centre and WTD device security strategy efforts Develop a Cloud Security Strategy that incorporates device security Holistic approach across IT security domains Integrate security services & strategies Data centric approach Continue consulting industry 8
Next Steps In early November, SSC plans to further explore cloud security with AFAC members At the next IT Infrastructure Roundtable meeting, return with feedback and advice from AFAC sessions on cloud security 9

More Related Content

PPTX
Bridging the Industrial IoT Gap
byMarty Pejko
 
PPTX
Identity-Based Privacy (IBP)
byIgor Zboran
 
PDF
DDS for Internet of Things (IoT)
byAbdullah Ozturk
 
PDF
Internet of Everything & WebRTC
byIgor Zboran
 
PDF
Risk Assessment Solutions of H2020 IoT Security/Privacy Cluster Projects
bySecureIoT H2020 funded project
 
PPTX
Internet of things
byMagesh Parthasarathy
 
PDF
Internet of Things Reference Architectures
bySofoklisEfremidisAIT
 
PDF
Identity-Based Privacy (IBP) - Cloud Computing and Privacy Protection
byIgor Zboran
 
Bridging the Industrial IoT Gap
byMarty Pejko
 
Identity-Based Privacy (IBP)
byIgor Zboran
 
DDS for Internet of Things (IoT)
byAbdullah Ozturk
 
Internet of Everything & WebRTC
byIgor Zboran
 
Risk Assessment Solutions of H2020 IoT Security/Privacy Cluster Projects
bySecureIoT H2020 funded project
 
Internet of things
byMagesh Parthasarathy
 
Internet of Things Reference Architectures
bySofoklisEfremidisAIT
 
Identity-Based Privacy (IBP) - Cloud Computing and Privacy Protection
byIgor Zboran
 

What's hot

PDF
Security fundamentals
bySofoklisEfremidisAIT
 
PPTX
Slides for CC & IAAS
byMekhi Da ‘Quay Daniels
 
PDF
Mobile Middleware and Mobility in the Enterprise - Yad Jaura, Marketing Manag...
bymfrancis
 
PPTX
Data, Big Data and real time analytics for Connected Devices
bySrinath Perera
 
PDF
Itir oct0714-network security-en
byKBIZEAU
 
PPT
Towards a Privacy-Friendly Internet of Things
byInternational Institute of Communications
 
PDF
Nana Owusu resume today
byNana Owusu
 
PPTX
Internet of Things Architecture / Topology
byNEEVEE Technologies
 
PDF
eHealth ….. How to trust a cloud?
byMario Drobics
 
PDF
Cybersecurity Summit AHR20 Protect Cimetrics
byCimetrics Inc
 
PDF
A. leng development of telehealth hub infrastructure in yorkshire
byWydział ds. eZdrowia, Departament Polityki Zdrowotnej, Urząd Marszałkowski w Łodzi
 
DOCX
Data Security
byankita_kashyap
 
PDF
Cybridge Secure Content Filter for SCADA Networks
byGeorge Wainblat
 
PPTX
Cloud computing 10 cloud security advantages and challenges
byVaibhav Khanna
 
PPTX
IoT-A ARM
byYu-Ting Chen
 
PDF
call for papers - International Journal on Cryptography and Information Secur...
byJonesSmith7
 
PPTX
Benefits of IT Outsourcing
byMultiTech IT
 
PPTX
Cybermss cap statement v1
byCory Coleman
 
PDF
Protective Monitoring
byjohandev
 
PPT
AGILE Gateway for Internet of Things
byCharalampos Doukas
 
Security fundamentals
bySofoklisEfremidisAIT
 
Slides for CC & IAAS
byMekhi Da ‘Quay Daniels
 
Mobile Middleware and Mobility in the Enterprise - Yad Jaura, Marketing Manag...
bymfrancis
 
Data, Big Data and real time analytics for Connected Devices
bySrinath Perera
 
Itir oct0714-network security-en
byKBIZEAU
 
Towards a Privacy-Friendly Internet of Things
byInternational Institute of Communications
 
Nana Owusu resume today
byNana Owusu
 
Internet of Things Architecture / Topology
byNEEVEE Technologies
 
eHealth ….. How to trust a cloud?
byMario Drobics
 
Cybersecurity Summit AHR20 Protect Cimetrics
byCimetrics Inc
 
A. leng development of telehealth hub infrastructure in yorkshire
byWydział ds. eZdrowia, Departament Polityki Zdrowotnej, Urząd Marszałkowski w Łodzi
 
Data Security
byankita_kashyap
 
Cybridge Secure Content Filter for SCADA Networks
byGeorge Wainblat
 
Cloud computing 10 cloud security advantages and challenges
byVaibhav Khanna
 
IoT-A ARM
byYu-Ting Chen
 
call for papers - International Journal on Cryptography and Information Secur...
byJonesSmith7
 
Benefits of IT Outsourcing
byMultiTech IT
 
Cybermss cap statement v1
byCory Coleman
 
Protective Monitoring
byjohandev
 
AGILE Gateway for Internet of Things
byCharalampos Doukas
 

Viewers also liked

DOC
7464 Movie Maker How To Guide Mtl
bymlofton62
 
PDF
Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
byKBIZEAU
 
PDF
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
byKBIZEAU
 
PDF
Shared Services Canada - Reports on Plans and Priorities 2014-2015
byKBIZEAU
 
PDF
Ssac summary-report-2014-en
byKBIZEAU
 
PDF
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
byKBIZEAU
 
PDF
Afac device-security-july-7-2014v7-2
byKBIZEAU
 
PPTX
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
byKBIZEAU
 
PDF
2014 sept-9-shared-services-canada
byKBIZEAU
 
PDF
Information security stki summit 2012-shahar geiger maor
byShahar Geiger Maor
 
PPTX
Club It
byMariaRClark
 
PPT
Hour Of Prayer
byMichael Gill
 
DOC
John 316
byMichael Gill
 
DOC
Luke 856
byMichael Gill
 
DOC
7464 Pb Lactivities Mtl
bymlofton62
 
PDF
collins vita 0915
byJennifer Collins
 
DOC
S1 L5
byMichael Gill
 
PDF
Resilience Design Toolkit. 50 Ingredients for Sustainable Business Model Inno...
bySebastiaan de Neubourg
 
PPT
Galatians 5
byMichael Gill
 
PPT
Psy 320 Secretary
byMariaRClark
 
7464 Movie Maker How To Guide Mtl
bymlofton62
 
Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
byKBIZEAU
 
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
byKBIZEAU
 
Shared Services Canada - Reports on Plans and Priorities 2014-2015
byKBIZEAU
 
Ssac summary-report-2014-en
byKBIZEAU
 
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
byKBIZEAU
 
Afac device-security-july-7-2014v7-2
byKBIZEAU
 
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
byKBIZEAU
 
2014 sept-9-shared-services-canada
byKBIZEAU
 
Information security stki summit 2012-shahar geiger maor
byShahar Geiger Maor
 
Club It
byMariaRClark
 
Hour Of Prayer
byMichael Gill
 
John 316
byMichael Gill
 
Luke 856
byMichael Gill
 
7464 Pb Lactivities Mtl
bymlofton62
 
collins vita 0915
byJennifer Collins
 
S1 L5
byMichael Gill
 
Resilience Design Toolkit. 50 Ingredients for Sustainable Business Model Inno...
bySebastiaan de Neubourg
 
Galatians 5
byMichael Gill
 
Psy 320 Secretary
byMariaRClark
 

Similar to Itir oct0714-afac report-en

PDF
AFAC session 2 - September 8, 2014
byKBIZEAU
 
PPT
Infrastructure Security by Sivamurthy Hiremath
byClubHack
 
PPTX
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
byHimani Singh
 
PDF
Architecting cybersecurity to future proof smart cities against emerging cybe...
byNUS-ISS
 
PDF
Dcc ied presentations_july_17_2013_-_en
byKBIZEAU
 
PPSX
6 Physical Security
byAlfred Ouyang
 
PDF
Shared services afac_oct_11_2012_english
byKBIZEAU
 
PPT
ch16computer sceurity chapter four and Managing Communication and Network Sec...
byhaymanottaddess2015m
 
PPTX
Using a Network Model to Address SANS Critical Controls 10 and 11
bySkybox Security
 
DOCX
What is the future of cloud security linked in
byJonathan Spindel
 
PPTX
Future-proofing Supply Chain against emerging Cyber-physical Threats
bySteven SIM Kok Leong
 
PDF
WP82 Physical Security in Mission Critical Facilities
bySE_NAM_Training
 
PPTX
Securing your Cloud Deployment
byHrusostomos Vicatos
 
PDF
Looking into the future of security
bySouthern Cross Group Services
 
PDF
CISA-Exam-Prep-Domain-5-2019.pdf. CISA exam
bygregtap1
 
PDF
Enterprise Strategy for Cloud Security
byBob Rhubart
 
PPTX
Security Unplugged
bysean_mckim
 
PPTX
talk6securingcloudamarprusty-191030091632.pptx
byTrongMinhHoang1
 
PPT
SGSB Webcast 3: Smart Grid IT Systems Security
byAndy Bochman
 
PPT
2012 ReEnergize the Americas 3B: Gene Rodriguez
byReenergize
 
AFAC session 2 - September 8, 2014
byKBIZEAU
 
Infrastructure Security by Sivamurthy Hiremath
byClubHack
 
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
byHimani Singh
 
Architecting cybersecurity to future proof smart cities against emerging cybe...
byNUS-ISS
 
Dcc ied presentations_july_17_2013_-_en
byKBIZEAU
 
6 Physical Security
byAlfred Ouyang
 
Shared services afac_oct_11_2012_english
byKBIZEAU
 
ch16computer sceurity chapter four and Managing Communication and Network Sec...
byhaymanottaddess2015m
 
Using a Network Model to Address SANS Critical Controls 10 and 11
bySkybox Security
 
What is the future of cloud security linked in
byJonathan Spindel
 
Future-proofing Supply Chain against emerging Cyber-physical Threats
bySteven SIM Kok Leong
 
WP82 Physical Security in Mission Critical Facilities
bySE_NAM_Training
 
Securing your Cloud Deployment
byHrusostomos Vicatos
 
Looking into the future of security
bySouthern Cross Group Services
 
CISA-Exam-Prep-Domain-5-2019.pdf. CISA exam
bygregtap1
 
Enterprise Strategy for Cloud Security
byBob Rhubart
 
Security Unplugged
bysean_mckim
 
talk6securingcloudamarprusty-191030091632.pptx
byTrongMinhHoang1
 
SGSB Webcast 3: Smart Grid IT Systems Security
byAndy Bochman
 
2012 ReEnergize the Americas 3B: Gene Rodriguez
byReenergize
 

More from KBIZEAU

PDF
Review of the Collaborative Procurement Process
byKBIZEAU
 
PDF
Delivering Public Sector Innovation
byKBIZEAU
 
PDF
Government of Canada Integrated IT Planning Presetation
byKBIZEAU
 
PDF
Hill timesarticle sharedservicescanada
byKBIZEAU
 
PDF
Transformation overview-final-oct-7-2014
byKBIZEAU
 
PDF
Ssac summary-report-2014-en
byKBIZEAU
 
PDF
Ssc 2014 2015 integrated business plan
byKBIZEAU
 
PDF
2014 june-11-transformation-plan-update-en
byKBIZEAU
 
PDF
2014 june-11-update-on-ssc-priorities-and-activities-en
byKBIZEAU
 
PDF
Network Solutions Supply Chain Industry Day_May28_2014_Consolidated
byKBIZEAU
 
PDF
SSC PSAB Policy w/Multiyear Performance Objectives
byKBIZEAU
 
PDF
Workplace Technology Devices (WTD) Initiative
byKBIZEAU
 
PDF
Future Role of the CIO
byKBIZEAU
 
PDF
“Increase Value of IT Services Through Application Portfolio Management” deli...
byKBIZEAU
 
PDF
Shared Services Canada - Transformation Initiatives
byKBIZEAU
 
PDF
Ssc sep 24_2013_industry_engagement_day_notice_-_en (1)
byKBIZEAU
 
PDF
Itac itc supply chain council introductory meeting june 11 2013 with ssc f ...
byKBIZEAU
 
PDF
July 9 ssc_gc_net_wan_service_industry_day_slides
byKBIZEAU
 
PPTX
Procurement - A Reflection on 2012-2013 and the Way Forward
byKBIZEAU
 
Review of the Collaborative Procurement Process
byKBIZEAU
 
Delivering Public Sector Innovation
byKBIZEAU
 
Government of Canada Integrated IT Planning Presetation
byKBIZEAU
 
Hill timesarticle sharedservicescanada
byKBIZEAU
 
Transformation overview-final-oct-7-2014
byKBIZEAU
 
Ssac summary-report-2014-en
byKBIZEAU
 
Ssc 2014 2015 integrated business plan
byKBIZEAU
 
2014 june-11-transformation-plan-update-en
byKBIZEAU
 
2014 june-11-update-on-ssc-priorities-and-activities-en
byKBIZEAU
 
Network Solutions Supply Chain Industry Day_May28_2014_Consolidated
byKBIZEAU
 
SSC PSAB Policy w/Multiyear Performance Objectives
byKBIZEAU
 
Workplace Technology Devices (WTD) Initiative
byKBIZEAU
 
Future Role of the CIO
byKBIZEAU
 
“Increase Value of IT Services Through Application Portfolio Management” deli...
byKBIZEAU
 
Shared Services Canada - Transformation Initiatives
byKBIZEAU
 
Ssc sep 24_2013_industry_engagement_day_notice_-_en (1)
byKBIZEAU
 
Itac itc supply chain council introductory meeting june 11 2013 with ssc f ...
byKBIZEAU
 
July 9 ssc_gc_net_wan_service_industry_day_slides
byKBIZEAU
 
Procurement - A Reflection on 2012-2013 and the Way Forward
byKBIZEAU
 

Recently uploaded

PPTX
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
PDF
Agentic AI Roadmap 2026: Mastering Autonomous AI Workflows and Systems
byAeafat Ahmed Mubin
 
PDF
Talaria: A Sound-Driven Music Search Engine for Discovery Beyond Metadata
byShuen-Huei Guan
 
PPTX
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
PDF
How the EU Ecolabel's Record Growth Creates ESG Opportunities for CRE
byWastify AI
 
PDF
TopMate ES11 3-Wheel Electric Scooter: Comfort, Stability, and Independence f...
byTopmate
 
PPT
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
PPTX
Mastering SQL Server Replication: Types, Setup & Troubleshooting
byGeoPITS Global Pvt Ltd
 
PDF
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
PPTX
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
PPTX
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
PPTX
A CIO’s Guide to Salesforce AI Architecture, Governance, and Implementation R...
byKerry Millar
 
DOCX
Best Web to Learn About Buying Verified Skrill Accounts (Los Angeles).docx
byhttps://topsellerit.com/product/buy-verified-binance-accounts/
 
PDF
Presentation of Cybersecurity and data protection
bytarikaityahya2
 
PPTX
CodeMash 2026 - Optimizing Azure App Services
byBrian McKeiver
 
PDF
What ONIX can do: Leveraging metadata to support the discoverability of First...
byBookNet Canada
 
PDF
Safer’s Picks: Recent FME Enhancements with Big Everyday Impact
bySafe Software
 
PDF
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
PDF
Teaching Robots how to Read 1/2: AI Center & Classic Document Understanding (...
byanabulhac
 
PDF
Azure DevOps Managed Services: Driving Speed, Security, and Business Growth
byjohncarterjn
 
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
Agentic AI Roadmap 2026: Mastering Autonomous AI Workflows and Systems
byAeafat Ahmed Mubin
 
Talaria: A Sound-Driven Music Search Engine for Discovery Beyond Metadata
byShuen-Huei Guan
 
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
How the EU Ecolabel's Record Growth Creates ESG Opportunities for CRE
byWastify AI
 
TopMate ES11 3-Wheel Electric Scooter: Comfort, Stability, and Independence f...
byTopmate
 
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
Mastering SQL Server Replication: Types, Setup & Troubleshooting
byGeoPITS Global Pvt Ltd
 
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
A CIO’s Guide to Salesforce AI Architecture, Governance, and Implementation R...
byKerry Millar
 
Best Web to Learn About Buying Verified Skrill Accounts (Los Angeles).docx
byhttps://topsellerit.com/product/buy-verified-binance-accounts/
 
Presentation of Cybersecurity and data protection
bytarikaityahya2
 
CodeMash 2026 - Optimizing Azure App Services
byBrian McKeiver
 
What ONIX can do: Leveraging metadata to support the discoverability of First...
byBookNet Canada
 
Safer’s Picks: Recent FME Enhancements with Big Everyday Impact
bySafe Software
 
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
Teaching Robots how to Read 1/2: AI Center & Classic Document Understanding (...
byanabulhac
 
Azure DevOps Managed Services: Driving Speed, Security, and Business Growth
byjohncarterjn
 

Itir oct0714-afac report-en

  • 1.
    Architecture Framework Advisory CommitteeUpdate Presentation to the Information Technology Infrastructure Roundtable October 7, 2014 Benoît Long, Senior Assistant Deputy Minister, Transformation, Service Strategy and Design and Chair of the Architecture Framework Advisory Committee
  • 2.
    Outline Context: Architecture Framework AdvisoryCommittee (AFAC) Meetings and Topics AFAC Consultation Roadmap on Cyber and IT Security Device Security Objectives Defined What Shared Services Canada (SSC) Has Heard Next Steps 2
  • 3.
    3 Workplace Technology Devices SHAREDSERVICESCANADAOUTCOMESAFACMEETINGS Cyberand IT Security Framework and Device Security Cloud Security Future Meeting Topics – timing to be confirmed* Jan 20 Feb 24 July 7 Sept 8 Nov 4 Dec 1 2014 2014 Context – Architecture Framework Advisory Committee Meetings and Topics 2015 Mar 14 Apr 16 May 26  Cyber and IT Framework and Device Security Defined Sept 2014  Enterprise Architecture library available on SSC Internet site Feb 2014 • Architecture Standards • SSC Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) • Directories • IT Security Standards 2014
  • 4.
    Architecture Framework AdvisoryCommittee’s Consultation Roadmap – Cyber and IT Security STRATEGY KEY ACTIVITIES 2014–15 AFAC INPUT  Recommendations for Strategic Questions  Guiding Principles/ Best Practices  Experience/Case Studies  Risks/Success Factors Cyber and IT Security Framework/ Device Security Service Bundles and Delivery Model Licensing Models and Solutions Framework and End-State Service Strategy Enterprise Procurement Functional Direction • Meetings • Demos • Written Submissions Formal Industry Engagement July 7 To Be Determined 4 Sept 8 Nov 4 Dec 1 Cloud Security Strategy (including Device Security)
  • 5.
    Device Security –Objectives 5 • Enhance security services required to mitigate from evolving threats • Support for security service integration with new cloud and mobile technologies • Support Treasury Board’s IT Policy Implementation Notice (ITPIN) implementation regarding the secure use of portable data storage devices within the Government of Canada • Address the need for an enterprise procurement vehicle for device security software • Existing device security software licenses renewal to maintain operations (e.g. Keeping the Lights On) • Multiple device security disparate solutions and policy application • Standardization to drive efficiencies and cost savings across the GC Increase Security Improve Service Generate Savings
  • 6.
    Device Security –Defined What is Device Security? • Device security refers to the protection of Government of Canada (GC) devices that are used to store and process data through the use of various information technology (IT) safeguard services. What GC Devices are we looking to protect? • Backend devices (Data Server Infrastructure) • Frontend devices (Traditional personal computers, laptops, Thin- Clients/Virtual Deployments) • Mobile Devices (Smartphones, Tablets) • ~569,000 devices (~100,000 data centre devices, ~469,000 workplace technology devices) Why do we need Device Security? • Safeguard GC devices and data from various forms of malware and intrusion • Maintain the confidentiality, integrity and availability of infrastructure information assets 6
  • 7.
    What Shared ServicesCanada Heard from the Architecture Framework Advisory Committee Address “legacy” requirements separately from “end state” De-couple procurements for DC and WTD as their security requirements are different Security continuously evolving to meet endlessly changing landscape Transition from network to data centric approach Cloud Security increases requirements for data encryption Build a centralised public key infrastructure (PKI)/certificate authorities Leverage “location based” data access (e.g. no Protected B in a public zone) Develop and enforce hardening and standards Metrics are crucial – defines how success is measured Look into behavioural security analysis for advanced attack detection Investigate sandbox and isolation techniques (micro-segmentation) 7
  • 8.
    Revised Device SecurityStrategy Address legacy requirements by leveraging existing procurement vehicles De-couple data centre and WTD device security strategy efforts Develop a Cloud Security Strategy that incorporates device security Holistic approach across IT security domains Integrate security services & strategies Data centric approach Continue consulting industry 8
  • 9.
    Next Steps In earlyNovember, SSC plans to further explore cloud security with AFAC members At the next IT Infrastructure Roundtable meeting, return with feedback and advice from AFAC sessions on cloud security 9