Shared Services Canada

The objective of this audit was to provide assurance that Security Assessment and Authorization reviews of IT systems and services are being conducted in accordance with a formal process and in compliance with Treasury Board of Canada and Shared Services Canada policy requirements.

The objective of this audit was to determine whether Shared Services Canada (SSC) was implementing a security policy framework that was consistent with Treasury Board (TB) policies regarding security and whether Security Assessment and Authorization (SA&A) processes were in place and working...