Blog

---

Canadian Centre for Cyber Security

The Canadian Centre for Cyber Security is taking stewardship of the cloud security profiles used to help organizations assess which options are best for protecting low to medium security information. The Government of Canada, through the Treasury Board Secretariat, has issued policies on how to use cloud-based infrastructure, which this new guidance aligns with and complements. But while we created this advice and guidance for the Government of Canada, it applies to any organization that wishes to move to a cloud-based environment.

Cloud-based computing is taking a bigger role in many organizations’ tech footprint every day. With more and more organizations big and small moving to a cloud-first strategy and work-from-home environment, the flexible, on-demand, scalable, and self-service components that cloud computing offers are an appealing option. But it is important to consider all aspects of what cloud computing means before jumping in.

The Cyber Centre developed guidelines to help secure cloud-based services. Each portion builds upon the last, to help get organizations to a safer and more secure cloud computing experience.

Guidance on the Security Categorization of Cloud-Based Services

Security categorization, which helps organizations identify the potential injuries that could result from compromises, is a fundamental step in protecting against the risks associated with the use of cloud computing. More protection is not always best, as it can lead to increased costs and wasted resources, but too little protection can put information and business processes at risk. Finding a solution that is just right for your organization is key, and this guidance will help you do just that.

Get new content delivered directly to your inbox.