Primary Program Sources

• Public Services and Procurement Canada (PSPC): Security screening for government contracts
o It is the landing page for the entire Contract Security Program (CSP).
• The Contract Security Manual (CSM): Official Reference Guide
o This is the "bible" for Company Security Officers (CSOs). It contains the specific rules for handling Protected and Classified information

Technical & Cloud Compliance Sources

• Canadian Centre for Cyber Security (CCCS): Cloud Security Risk Management Approach
o It outlines how the government assesses cloud service providers (CSPs) like Microsoft and Amazon.
• CCCS - ITSG-33 Guidance: Security Control Catalogue
o It lists the actual technical "controls" (like encryption and MFA) required to meet Canadian security standards.
• Government of Canada PBMM Profile: Security Control Profile for Cloud-based Services
o This specifically defines the "Protected B, Medium Integrity, Medium Availability" profile that Trusted Workspace helps clients achieve.

Canadian Security Alliance Group Inc. All Rights Reserved.
Canadian Security Alliance Group Inc. All Rights Reserved.