Organization: Communications Security Establishment Canada
Year: 2023
Month: June
Request Number: A-2020-00031
Request Summary: IPOC operational policy governing the regulations for detecting suspicious search and usage behaviour inside CERRID and GCDoc. Including the operational policy defining what constitute a suspicious user behaviour for the purpose of insider threat monitoring, up to examples of searches but excluding the specific search criteria that would trigger a CERRID/GCDoc user search for further investigation by IPOC. IPOC is defined as the CSE organization known up to 2016 as the Information Protection Operation Center, or any organization that replaced the IPO C function since then.
Disposition: Disclosed in part
Number of pages: 35