Uploaded byKBIZEAU
PDF, PPTX622 views

Itir oct0714-network security-en

The presentation outlines Shared Services Canada's cyber and IT security framework, highlighting the importance of integrated risk management and enhanced protection measures for infrastructure and data. It details the current state of security solutions versus the targeted end state, emphasizing the need for unified systems and improved incident response capabilities. The discussion concludes with a focus on security principles, a gradual shift towards advanced security models, and next steps for implementation and governance.

Embed presentation

Download as PDF, PPTX
Shared Services Canada Cyber and IT Security Framework Presentation to the Information Technology Infrastructure Roundtable October 7, 2014 Benoît Long, Senior Assistant Deputy Minister, Transformation, Service Strategy and Design, and Chair of the Architecture Framework Advisory Committee
2 • Integrated IT security risk management • Security through end- to-end design • Enhanced information and system protection • Real-time detection of security incidents • Swift incident response and recovery Current State End State Benefits • One enterprise perimeter/border defence services • One enterprise standard secure remote access solution • One enterprise secret network to enable collaboration • Approximately 20,000 users • Standardized enterprise SOC with alternate site • Coordinated proactive rapid response and recovery Cyber and IT Security: Current-state and End-state Targets • One enterprise device security solution with data loss prevention • 27 perimeter/border defence services • 22 different security remote access solutions • 32 isolated department-specific secret networks • 10,000 users • Various maturity level Security Operations Centres (SOC), some with rudimentary services • Reactive, slow and siloed response to cyber threats • 42-department device security implementation with partial data loss prevention services • Enterprise robust IT security risk management • IT security integrated into the design • 42 department-specific IT security risk-management approaches • IT security as an “add-on” CYBERSECURITYITSECURITYGCSECRET IT
3 Cyber and IT Security Framework INFRASTRUCTURE & DATA • Aligned to Canada’s Cyber Security Strategy (CCSS) • Security and privacy built in as part of end-to-end service design • Partnership with Treasury Board Secretariat, Communications Security Establishment Canada and Public Safety Shared Services Canada is mandated to protect the infrastructure and associated data- in-transit, storage, and use. OPERATE EVOLVE TRANSFORM
Cyber and IT Security Functions 4 PREVENTION • Trusted infrastructure products and services through supply chain integrity • Cyber and IT security (including privacy) policies and standards • Security awareness and training • Infrastructure protection services • Data protection services • Identity, Credentials and Access Management services • Secret infrastructure services • Business continuity and emergency management DETECTION • Coordination of GC- wide monitoring, detection, identification, prioritization and reporting of IT security incidents • Automated, real-time threat monitoring, security information and event management and analysis • Log analysis and investigations • Security and privacy assessment • Vulnerability assessments RESPONSE • GC-wide coordination and remediation of IT security incidents • Threat assessment and situational reporting • Coordination and distribution of GC product alerts, warnings and advisories • Forensics • Software integrity through security configuration or replacement • Infrastructure integrity through configuration or replacement RECOVERY • Highly specialized IT security incident recovery services • Mitigation advice and guidance • Vulnerability remediation • Post-incident analysis SECURITY MANAGEMENT Governance Innovation Engagement Risk Management PREVENTION DETECTION RESPONSE RECOVERY
5 Security Principles  Trusted equipment and services through supply chain integrity  Security and privacy by design to ensure that all aspects of security are addressed as part of design, balancing service, security and savings  Gradual enhancement from a network-based security model to include application and data-centric security – apply security controls as close to the data as practical  Privileged access to data will be maintained and multi-tenancy will be built into systems where sensitive data owned by one partner cannot be seen by another partner or by unauthorized individuals.  Security breaches in one part of the infrastructure are quickly detected and contained without spreading to other parts of the infrastructure.  Maintain and improve the security posture as part of moving to enterprise services (i.e. don’t reduce security).
6  Elaborate and define the functions as part of Shared Services Canada’s enterprise services.  Develop a multi-year roadmap toward the implementation of the enterprise services.  Develop associated organizational roles and responsibilities and a costing framework. Next Steps

More Related Content

PDF
AFAC session 2 - September 8, 2014
byKBIZEAU
 
PPTX
DNSFilter Webinar: Decentralized Security
byDNSFilter
 
PDF
Secure Cloud Hosting: Real Requirements to Protect your Data
byGreat Wide Open
 
PPT
Network Security, Change Control, Outsourcing
byNicholas Davis
 
PDF
Cybersecurity Summit 2020 Slide Deck
byCimetrics Inc
 
PPT
Data center
bygssmedia
 
PPTX
Benefits of IT Outsourcing
byMultiTech IT
 
PPTX
How to Comply with NIST 800-171
byCorserva
 
AFAC session 2 - September 8, 2014
byKBIZEAU
 
DNSFilter Webinar: Decentralized Security
byDNSFilter
 
Secure Cloud Hosting: Real Requirements to Protect your Data
byGreat Wide Open
 
Network Security, Change Control, Outsourcing
byNicholas Davis
 
Cybersecurity Summit 2020 Slide Deck
byCimetrics Inc
 
Data center
bygssmedia
 
Benefits of IT Outsourcing
byMultiTech IT
 
How to Comply with NIST 800-171
byCorserva
 

What's hot

PPTX
The privacy and security implications of AI, big data and predictive analytics
byDan Michaluk
 
PPTX
3 Reasons Why Manufacturing Companies are Moving to Dynamics 365FO
byNandita Nityanandam
 
PPTX
Building Cybersecurity into a Greenfield ICS Project
byJohn Cusimano, CFSE, CISSP, GICSP
 
PPTX
NAC - A Solution for Disappearing Perimeter
byRiskNaut
 
PPTX
Advanced Data Center Security
bymanoharparakh
 
PDF
Protecting Critical Infrastructure in the Design-Build Framework...A Focus on...
bycrmcg2007
 
PPTX
Payment Card Industry Security Standards
byAshintha Rukmal
 
PPTX
Distributed Ledger PKI Risk Management Framework, Rob Campbell
byNapier University
 
PDF
Mobile Middleware and Mobility in the Enterprise - Yad Jaura, Marketing Manag...
bymfrancis
 
PPTX
Farfield systems caoabilities feb 2013
byJohn Secondari
 
PPTX
Practical Approaches to Securely Integrating Business and Production
byJim Gilsinn
 
PPTX
Cloak your critical industrial control systems before they get hacked
byTempered
 
PPTX
The Biggest Mistake you can make with your Data Center Licenses
byIvanti
 
PPTX
IT Governance Roles and Data Governance - Hernan Huwyler
byHernan Huwyler, MBA CPA
 
PPTX
GDPR Part 2: Quest Relevance
byAdrian Dumitrescu
 
PDF
Active Directory in ICS: Lessons Learned From The Field
byDigital Bond
 
PPTX
Sweden dell security
byRonny Stavem
 
PPTX
Integrating the Alphabet Soup of Standards
byJim Gilsinn
 
PPTX
You've Been Breached: How To Mitigate The Incident
byResilient Systems
 
The privacy and security implications of AI, big data and predictive analytics
byDan Michaluk
 
3 Reasons Why Manufacturing Companies are Moving to Dynamics 365FO
byNandita Nityanandam
 
Building Cybersecurity into a Greenfield ICS Project
byJohn Cusimano, CFSE, CISSP, GICSP
 
NAC - A Solution for Disappearing Perimeter
byRiskNaut
 
Advanced Data Center Security
bymanoharparakh
 
Protecting Critical Infrastructure in the Design-Build Framework...A Focus on...
bycrmcg2007
 
Payment Card Industry Security Standards
byAshintha Rukmal
 
Distributed Ledger PKI Risk Management Framework, Rob Campbell
byNapier University
 
Mobile Middleware and Mobility in the Enterprise - Yad Jaura, Marketing Manag...
bymfrancis
 
Farfield systems caoabilities feb 2013
byJohn Secondari
 
Practical Approaches to Securely Integrating Business and Production
byJim Gilsinn
 
Cloak your critical industrial control systems before they get hacked
byTempered
 
The Biggest Mistake you can make with your Data Center Licenses
byIvanti
 
IT Governance Roles and Data Governance - Hernan Huwyler
byHernan Huwyler, MBA CPA
 
GDPR Part 2: Quest Relevance
byAdrian Dumitrescu
 
Active Directory in ICS: Lessons Learned From The Field
byDigital Bond
 
Sweden dell security
byRonny Stavem
 
Integrating the Alphabet Soup of Standards
byJim Gilsinn
 
You've Been Breached: How To Mitigate The Incident
byResilient Systems
 

Viewers also liked

DOC
Robert David CV
byRobert David
 
PPTX
Carrera germán
byGerman Ortiz Ramírez
 
PDF
Security and Compliance in Regulated Industries
byDreamforce
 
PPTX
Deloitte Federal Technology Case Competition - Team PKS
byJohn Matthews
 
PDF
Deloitte_S4 HANA Finace for Retailers
byArjun Krishnamurthy
 
PDF
Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
byKBIZEAU
 
PPTX
Accelerating SDLC for Large Public Sector Enterprise Applications
bySplunk
 
PDF
MDM106 - MDM106_Leading_with_Data___Governance_for_One_Finance
byAlistair Wallace
 
PDF
Shared Services Canada - Transformation Initiatives
byKBIZEAU
 
PDF
Government digital transformation
byDeloitte UK
 
PDF
Digital Government Transformation: The journey to government’s digital future
byDeloitte United States
 
PDF
PowerPoint Hacks for Rookies: 4 Must Consider Aspects
by24Slides
 
Robert David CV
byRobert David
 
Carrera germán
byGerman Ortiz Ramírez
 
Security and Compliance in Regulated Industries
byDreamforce
 
Deloitte Federal Technology Case Competition - Team PKS
byJohn Matthews
 
Deloitte_S4 HANA Finace for Retailers
byArjun Krishnamurthy
 
Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
byKBIZEAU
 
Accelerating SDLC for Large Public Sector Enterprise Applications
bySplunk
 
MDM106 - MDM106_Leading_with_Data___Governance_for_One_Finance
byAlistair Wallace
 
Shared Services Canada - Transformation Initiatives
byKBIZEAU
 
Government digital transformation
byDeloitte UK
 
Digital Government Transformation: The journey to government’s digital future
byDeloitte United States
 
PowerPoint Hacks for Rookies: 4 Must Consider Aspects
by24Slides
 

Similar to Itir oct0714-network security-en

PDF
Afac device-security-july-7-2014v7-2
byKBIZEAU
 
PPTX
Securing ever growing and complex business systems v1 1
byMaganathin Veeraragaloo
 
PPTX
Cyber Security - Awareness Presentation - High Level
bybbothma718
 
PPT
Infrastructure Security by Sivamurthy Hiremath
byClubHack
 
PDF
SIEM enabled risk management , SOC and GRC v1.0
byRasmi Swain
 
PDF
2014 sept-9-shared-services-canada
byKBIZEAU
 
PDF
Cybersecurity Landscape for Canadian Business
byInfinity Network Solutions
 
PPTX
Navigating-the-Digital-Frontier-A-Guide-to-Cyber-Security Surojit.pptx.pptx
byayushsarkar975
 
PPT
A Network of Networks
byGovernment Technology Exhibition and Conference
 
PDF
Selex ES at Le Bourget 2013 Cyber Partnership
byLeonardo
 
PDF
IT Managed Services Florida | MSP Solutions Provider Orlando
byZ7 Solutions
 
PDF
Nist cybersecurity framework isc2 quantico
byTuan Phan
 
PDF
Why Corporate Security Professionals Should Care About Information Security
byResolver Inc.
 
PPTX
Cloud Security.pptx
byBinod Rimal
 
PPT
Creating a Culture of Security
byTechSoup
 
PPTX
Protection of critical information infrastructure
byNeha Agarwal
 
PPTX
CYBERSECURITY.pptx
byItzRoswell1
 
PDF
Management CyperSecurity Risk - Management CyperSecurity Risk
bybellinipolla
 
PDF
NIST critical_infrastructure_cybersecurity.pdf
byssuserb3094b
 
PDF
Today's Cyber Challenges: Methodology to Secure Your Business
byJoAnna Cheshire
 
Afac device-security-july-7-2014v7-2
byKBIZEAU
 
Securing ever growing and complex business systems v1 1
byMaganathin Veeraragaloo
 
Cyber Security - Awareness Presentation - High Level
bybbothma718
 
Infrastructure Security by Sivamurthy Hiremath
byClubHack
 
SIEM enabled risk management , SOC and GRC v1.0
byRasmi Swain
 
2014 sept-9-shared-services-canada
byKBIZEAU
 
Cybersecurity Landscape for Canadian Business
byInfinity Network Solutions
 
Navigating-the-Digital-Frontier-A-Guide-to-Cyber-Security Surojit.pptx.pptx
byayushsarkar975
 
A Network of Networks
byGovernment Technology Exhibition and Conference
 
Selex ES at Le Bourget 2013 Cyber Partnership
byLeonardo
 
IT Managed Services Florida | MSP Solutions Provider Orlando
byZ7 Solutions
 
Nist cybersecurity framework isc2 quantico
byTuan Phan
 
Why Corporate Security Professionals Should Care About Information Security
byResolver Inc.
 
Cloud Security.pptx
byBinod Rimal
 
Creating a Culture of Security
byTechSoup
 
Protection of critical information infrastructure
byNeha Agarwal
 
CYBERSECURITY.pptx
byItzRoswell1
 
Management CyperSecurity Risk - Management CyperSecurity Risk
bybellinipolla
 
NIST critical_infrastructure_cybersecurity.pdf
byssuserb3094b
 
Today's Cyber Challenges: Methodology to Secure Your Business
byJoAnna Cheshire
 

More from KBIZEAU

PDF
Review of the Collaborative Procurement Process
byKBIZEAU
 
PDF
Delivering Public Sector Innovation
byKBIZEAU
 
PDF
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
byKBIZEAU
 
PDF
Government of Canada Integrated IT Planning Presetation
byKBIZEAU
 
PDF
Hill timesarticle sharedservicescanada
byKBIZEAU
 
PDF
Itir oct0714-afac report-en
byKBIZEAU
 
PDF
Ssac summary-report-2014-en
byKBIZEAU
 
PDF
Transformation overview-final-oct-7-2014
byKBIZEAU
 
PDF
Ssac summary-report-2014-en
byKBIZEAU
 
PDF
Ssc 2014 2015 integrated business plan
byKBIZEAU
 
PDF
2014 june-11-transformation-plan-update-en
byKBIZEAU
 
PDF
2014 june-11-update-on-ssc-priorities-and-activities-en
byKBIZEAU
 
PDF
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
byKBIZEAU
 
PDF
Network Solutions Supply Chain Industry Day_May28_2014_Consolidated
byKBIZEAU
 
PDF
Shared Services Canada - Reports on Plans and Priorities 2014-2015
byKBIZEAU
 
PPTX
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
byKBIZEAU
 
PDF
SSC PSAB Policy w/Multiyear Performance Objectives
byKBIZEAU
 
PDF
Workplace Technology Devices (WTD) Initiative
byKBIZEAU
 
PDF
Future Role of the CIO
byKBIZEAU
 
PDF
“Increase Value of IT Services Through Application Portfolio Management” deli...
byKBIZEAU
 
Review of the Collaborative Procurement Process
byKBIZEAU
 
Delivering Public Sector Innovation
byKBIZEAU
 
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
byKBIZEAU
 
Government of Canada Integrated IT Planning Presetation
byKBIZEAU
 
Hill timesarticle sharedservicescanada
byKBIZEAU
 
Itir oct0714-afac report-en
byKBIZEAU
 
Ssac summary-report-2014-en
byKBIZEAU
 
Transformation overview-final-oct-7-2014
byKBIZEAU
 
Ssac summary-report-2014-en
byKBIZEAU
 
Ssc 2014 2015 integrated business plan
byKBIZEAU
 
2014 june-11-transformation-plan-update-en
byKBIZEAU
 
2014 june-11-update-on-ssc-priorities-and-activities-en
byKBIZEAU
 
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
byKBIZEAU
 
Network Solutions Supply Chain Industry Day_May28_2014_Consolidated
byKBIZEAU
 
Shared Services Canada - Reports on Plans and Priorities 2014-2015
byKBIZEAU
 
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
byKBIZEAU
 
SSC PSAB Policy w/Multiyear Performance Objectives
byKBIZEAU
 
Workplace Technology Devices (WTD) Initiative
byKBIZEAU
 
Future Role of the CIO
byKBIZEAU
 
“Increase Value of IT Services Through Application Portfolio Management” deli...
byKBIZEAU
 

Recently uploaded

PDF
Track Phone Location by Number (2026)_ What’s Actually Possible for Free (and...
byEmily Woods
 
PDF
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
Post-Hackathon-Learnings-Maximizing-Impact-Beyond-the-Event.pdf
byishantyadav1111
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
OpenCharacter AI Reviews: Features, Plans, and Best Alternative
byOpenCharacter AI
 
PPTX
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
PDF
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
PDF
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
PDF
Supercharge Your Copilot-Driven Collaboration with Microsoft 365 Agents SDK
byAntti Koskela
 
PPTX
TechSprint (SJBIT) 2025-26 Hackathon Winners & Awards Ceremony
bysuhasspgdg
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PPTX
NTG - Data Center Management System Software
byMustafa Kuğu
 
Track Phone Location by Number (2026)_ What’s Actually Possible for Free (and...
byEmily Woods
 
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
Post-Hackathon-Learnings-Maximizing-Impact-Beyond-the-Event.pdf
byishantyadav1111
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
OpenCharacter AI Reviews: Features, Plans, and Best Alternative
byOpenCharacter AI
 
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
Supercharge Your Copilot-Driven Collaboration with Microsoft 365 Agents SDK
byAntti Koskela
 
TechSprint (SJBIT) 2025-26 Hackathon Winners & Awards Ceremony
bysuhasspgdg
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
NTG - Data Center Management System Software
byMustafa Kuğu
 

Itir oct0714-network security-en

  • 1.
    Shared Services Canada Cyberand IT Security Framework Presentation to the Information Technology Infrastructure Roundtable October 7, 2014 Benoît Long, Senior Assistant Deputy Minister, Transformation, Service Strategy and Design, and Chair of the Architecture Framework Advisory Committee
  • 2.
    2 • Integrated ITsecurity risk management • Security through end- to-end design • Enhanced information and system protection • Real-time detection of security incidents • Swift incident response and recovery Current State End State Benefits • One enterprise perimeter/border defence services • One enterprise standard secure remote access solution • One enterprise secret network to enable collaboration • Approximately 20,000 users • Standardized enterprise SOC with alternate site • Coordinated proactive rapid response and recovery Cyber and IT Security: Current-state and End-state Targets • One enterprise device security solution with data loss prevention • 27 perimeter/border defence services • 22 different security remote access solutions • 32 isolated department-specific secret networks • 10,000 users • Various maturity level Security Operations Centres (SOC), some with rudimentary services • Reactive, slow and siloed response to cyber threats • 42-department device security implementation with partial data loss prevention services • Enterprise robust IT security risk management • IT security integrated into the design • 42 department-specific IT security risk-management approaches • IT security as an “add-on” CYBERSECURITYITSECURITYGCSECRET IT
  • 3.
    3 Cyber and ITSecurity Framework INFRASTRUCTURE & DATA • Aligned to Canada’s Cyber Security Strategy (CCSS) • Security and privacy built in as part of end-to-end service design • Partnership with Treasury Board Secretariat, Communications Security Establishment Canada and Public Safety Shared Services Canada is mandated to protect the infrastructure and associated data- in-transit, storage, and use. OPERATE EVOLVE TRANSFORM
  • 4.
    Cyber and ITSecurity Functions 4 PREVENTION • Trusted infrastructure products and services through supply chain integrity • Cyber and IT security (including privacy) policies and standards • Security awareness and training • Infrastructure protection services • Data protection services • Identity, Credentials and Access Management services • Secret infrastructure services • Business continuity and emergency management DETECTION • Coordination of GC- wide monitoring, detection, identification, prioritization and reporting of IT security incidents • Automated, real-time threat monitoring, security information and event management and analysis • Log analysis and investigations • Security and privacy assessment • Vulnerability assessments RESPONSE • GC-wide coordination and remediation of IT security incidents • Threat assessment and situational reporting • Coordination and distribution of GC product alerts, warnings and advisories • Forensics • Software integrity through security configuration or replacement • Infrastructure integrity through configuration or replacement RECOVERY • Highly specialized IT security incident recovery services • Mitigation advice and guidance • Vulnerability remediation • Post-incident analysis SECURITY MANAGEMENT Governance Innovation Engagement Risk Management PREVENTION DETECTION RESPONSE RECOVERY
  • 5.
    5 Security Principles  Trustedequipment and services through supply chain integrity  Security and privacy by design to ensure that all aspects of security are addressed as part of design, balancing service, security and savings  Gradual enhancement from a network-based security model to include application and data-centric security – apply security controls as close to the data as practical  Privileged access to data will be maintained and multi-tenancy will be built into systems where sensitive data owned by one partner cannot be seen by another partner or by unauthorized individuals.  Security breaches in one part of the infrastructure are quickly detected and contained without spreading to other parts of the infrastructure.  Maintain and improve the security posture as part of moving to enterprise services (i.e. don’t reduce security).
  • 6.
    6  Elaborate anddefine the functions as part of Shared Services Canada’s enterprise services.  Develop a multi-year roadmap toward the implementation of the enterprise services.  Develop associated organizational roles and responsibilities and a costing framework. Next Steps