Guidance on Cloud Security Assessment and Authorization (ITSP.50.105)

"Cloud computing has the potential to provide your organization with flexible, on-demand, scalable and self-service IT services. To benefit from cloud computing, your organization must ensure that security risks are properly managed, cloud specific security considerations are addressed, and security controls of cloud-based services are properly assessed before authorized.

You organization can use the guidance in this document to assist with its security assessment and authorization of cloud-based services. "

Data and Resources

Additional Info

Field	Value
Last Updated	April 17, 2026, 21:34 (UTC)
Created	April 17, 2026, 21:34 (UTC)
contact_email	opengov-gouvouvert@cse-cst.gc.ca
criticality_level	["government", "nongovernmental_organizations"]
geographic_scope	[]
open_canada_collection	publication
open_canada_date_published	2020-06-03 00:00:00
open_canada_keywords	{"fr": ["sécurité infonuagique", "securité des réseaux", "gestion des risques"], "en": ["cloud security", "network security", "risk management"]}
open_canada_subject	["information_and_communications", "science_and_technology"]
sensitivity_level	unrestricted
title_fr	Guide sur l’évaluation et l’autorisation de la sécurité infonuagique (ITSP.50.105)
update_frequency	not_planned