SlideShare uma empresa Scribd logo

Workplace Technology Devices (WTD) Initiative

K
KBIZEAU

The Justice Canada pilot will test a hybrid sourcing model for providing Workplace Technology Device support services. The pilot will involve approximately 5,850 end user devices across National Capital Region offices and regional locations in Canada. It will evaluate providing Level 1 service desk support, Level 2 deskside support in the NCR, and Level 3 engineering support through a vendor, while maintaining Level 2 deskside support in regional locations using Government of Canada employees. The pilot aims to help inform the enterprise-wide WTD business case and gather information on requirements for regional and remote service delivery.

TecnologiaNegócios
1 de 58
Baixar para ler offline
Industry Day on Pilot Projects November 8, 2013 1
WTD Industry Day on Pilot Projects – Objectives During the Industry Day Presentation, SSC will provide potential vendors with: • a high-level overview of the Workplace Technology Devices initiative and the pilot projects which includes the proposed approach, the potential scope, and high-level requirements; • an explanation of the proposed procurement approach for the pilots; • a discussion regarding the Cyber Security Supply Chain Integrity Threat; and • the opportunity to provide feedback on the level of interest among their companies and associations related to the pilots and their scope and requirements. 2
Workplace Technology Devices: Industry Day November 8, 2013 Benoît Long Senior Assistant Deputy Minister Transformation, Service Strategy and Design 3
Shared Services Canada Background / Context Budget 2011 A New Organization with an IT Focus STANDARDIZE Raison d’être  Reduce costs  Improve security  Maximize efficiencies  Minimize risks CONSOLIDATE RE-ENGINEER 4
A Year in Review TELECOMMUNICATIONS EMAIL • Transformed the procurement process • Completed the procurement process with industry • June 25, 2013: contract awarded to Bell and CGI Systems WORKPLACE TECHNOLOGY DEVICES • June 2013: Cabinet support for Transformation Plan • Hosted Industry engagement days for GC Network and Wide-Area network, converged communications • Implemented Government Enterprise System (GENS) in 130 of 3850 buildings; IIS procurement • One-year interim agreement with Microsoft To be replaced by WTD icon DATA CENTRES • June 2013: Cabinet support for Transformation Plan. • Hosted industry engagement day on data centre platforms. • Developed concensus between SSC and industry on fundamental directions on technology and service orientation. • Centre de données Ouest de Quebec: created horizontal teams across SSC; opening of first development data centre. CYBER AND IT SECURITY • January 2013: launched two-step procurement process to strengthen supply chain integrity • Managed Security Service 5
Target End State Cyber Threats Target end state: Less than 10 data centres Allies (+International) Canadians Next pair(s): Next set of production data centres • If /as required (to be confirmed) • Located outside of NCR and ON High Performance computing - specialized supercomputing facility GC Network Public Servants Enhanced Enterprise Security Second pair: First set of production data centres • GC-owned facility on the Canadian Forces Base (CFB) Borden • Site located within 100 km of Borden Businesses Governments • Most outside of the National Capital Region First pair: Development data centres • GC-owned MacdonaldCartier in Ottawa • Bell Canada in Gatineau • Virtual Private Cloud • Established in pairs for redundancy • Mostly private sectorowned Target end state: Streamlined networks Internet Regional and International Carriers (377 000 users; 3,580 buildings) GC Offices Production 1 & 2 Production 3 & 4 Business Continuity Sensitive Data Enclaves Development 1& 2 Supercomputers Connecting 377 000 public servants to each other and to Canadians • Linking 3 580 GCoccupied buildings Key components include: • Single enterprise-wide network with enhanced capacity and robustness • Ultra high-speed, no fail connectivity between data centres • Greater, more secure Internet connectivity • Streamlined and wireless telecom infrastructure inside buildings • Voice services (VoIP) (wired and wireless) • More desktop videoconferencing services • Contact Centre Infrastructure Services • Enhanced security through consolidated security services and increased perimeter security 6
Transformation Timelines Q1 EMAIL && EMAIL BB10 BB10 DATA DATA ENTRE CCENTERS Fiscal Year (FY) 13/14 Q2 Q3 Q4 Wave 0 complete EMAIL Borden / Production 1 Interim Established PRODUCTION NOLOGY DEVICES FY 15/16 Q1 Q2 Strategy for Multi-Tenant buildings & trusted source guests GC Service Established CYBER SECURITY IT SECURITY GC SECURE INFRASTRUCTURE Security Operations Centre Release 1 Managed Security Service Contract Award & Migration Software Service Design FY 16/17 Q2 Q3 FY FY FY 17/18 18/19 19/20 Q4 Mcdonald Cartier Data Centre / Development 2 Refurbishment Complete Borden / Production 1 Expansion Complete Production 4 Established Production 3 Established Supercomputing Consolidation Complete Pilot Contract Award(s) Contract Award Security Operations Centre Release 2 Building-by-building migration begins Migration Complete Migration Complete Migration to enterprise services (Contact Centre Infrastructure and Toll Free Services Building-by-building migration begins Network Security Transformation Plan Industry Day Q1 BB10 rollout complete Consolidation Complete Migration Complete Migration Complete Security Operations Centre Release 3 Identity Credential Access Mgmt Release 1 Consolidate / Migrate Release 2 / Initiate Consolidation SUPPORT SERVICES PROVISIONING SERVICES Q4 Building-by-building migration begins Contract Awards GCNET WAN Q3 Wave 3 complete Science Data Centre Replacement Complete HOST. IP - VOICE WORKPLACE WORKPLACE TECHNOLOGY TECHDEVICES Q4 Production 2 Established CONTACT CENTRE CYBER AND IT SECURITY Q3 Centre de Données l’Ouest du Québec/Development 1 Complete DEVELOPMENT CONFERENCE Q2 Pilot (SSC, TBS, Foreign Affairs and Trade Development Canada Execute Wave 1 BB10 WIFI / LAN VIDEO- FY 14/15 Wave 1 Wave 2 complete complete SCIENTIFIC NETWORKS NETWORK Q1 Pilot Business Case Pilot Contract Award Software Sourcing Strategy Hardware Service Design Hardware Sourcing Strategy 7
SSC Transformation Timelines – Workplace Technology Devices Q1 WORKPLACE TECHNOLOGY DEVICES SUPPORT SERVICES FY 13/14 Q2 Industry Day Q3 Q4 Pilot Business Case Q1 FY 14/15 Q2 Q3 FY 15/16 Q4 Q1 Enterprise Business Case Pilot Contract Award PROVISIONING SERVICES Software Service Design Software Sourcing Strategy Hardware Service Design Hardware Sourcing Strategy 8
What To Expect Over The Next Year • Wave 0 and Wave 1 departments are migrated to new Email and Blackberry 10 services • Transformation of the current hardware/software/network supply arrangements to support platform standardization • DEV 1 and PROD 1 come online – migrations begin • Sourcing • GCNet is procured and detailed implementation planning and execution begins • VC services established; Contact Centre enterprise technology services and hosted IP service procured • Security Operations Centre release 2 • Plan for consolidation of secure infrastructure developed To be replaced by WTD icon • Industry engagement (industry days and Architecture Framework Advisory Committee) • Pilots selected and procured • Software and hardware standardization and provisioning services begin 9
What is the Workplace Technology Devices initiative? • The Workplace Technology Devices (WTD) initiative will standardize, consolidate and re-engineer the delivery of end user device hardware, software and associated support services in the Government of Canada to reduce costs and increase security for 95 organizations (includes SSC, and 43 partner and 51 client departments and agencies). • The initiative was established following announcements in Budget 2013 and the approval of Orders-in-Council (OiC) 2013-0368 in April 2013. The OiC mandated SSC with the responsibility for the procurement of hardware and software, including security software, and related support services for end user devices. • Organizations continue to be responsible for WTD support services, however SSC was asked to explore how these services could be modernized. • 10
Workplace Technology Devices Initiative: Background “Economic Action Plan 2013 takes concrete action to reduce duplication in government information technology (IT) by standardizing and consolidating the procurement of end-user devices and transitioning to a single platform for federal email systems. • Generate savings through software consolidation from a base of Federal departments are currently individually responsible for procuring end-user IT $124M devices for their employees—including computers, operating software, and peripherals such as Printers—as well as providing the associated IT support services. Duplication of  2013/14 - $2.1M effort in these activities has resulted in the Government spending significantly more than 2014/15 - $8.7M the private sector. By moving away from each department independently managing these activities, there are opportunities to drive economies of scale, achieve savings for taxpayers and improve service. Therefore, Economic Action Plan 2013 announces the consolidation and standardization of software procurement for end-user devices for federal employees, resulting in annual savings of $8.7 million beginning in 2014–15. Moving forward, the Government will explore further whole-of-government approaches to reduce costs in the area of procurement of end-user devices and associated support services”. – Budget 2013. 11
Thank you! 12
Background on the Workplace Technology Devices Initiative and Justice Canada Pilot Overview Gail Eagen, Director General, Workplace Technology Devices Initiative, Transformation, Service Strategy and Design, Shared Services Canada André Arsenault Director, Workplace Technology Devices Initiative, Transformation, Service Strategy and Design, Shared Services Canada 13
Contents • Scope the Workplace Technology Devices initiative and update on current activities • Justice Canada Pilot Overview 14
WTD initiative - Scope* Departmental Responsibility Partners and Clients USER Email and Directory Service FACING SERVICES ENABLING SERVICES Desktop Services File/Print Service Provisioning Services Desktop and Office Productivity Suite Remote Access Service Service Management Work Group Collaborative Services Information Technology (IT) Security * According to the Government of Canada Profile of IT Services RESOURCES Software Legend: Government of Canada Corporate / Program Application Services Contracts Email – Shared Services Canada (SSC) Scope Hardware People Workplace Technology Devices Scope Facilities Departmental scope 15
WTD initiative - Scope • WTD Hardware includes client computers: desktops, laptops, notebooks, tablets and peripherals such as printers and scanners. Hardware services include Acquisition and Provisioning. • WTD Software includes operating systems, office productivity suite, and security software (e.g. Antivirus). It also includes desktop virtualisation technologies and mobile device management. Software services include Acquisition and Provisioning. • WTD Associated Support services include Level 1 Service Desk Support, Level 2 Deskside Support (break-fix, troubleshooting, configuration and installation), WTD Device Engineering and Management (e.g. Patch Management and Software Distribution). Workplace Technology Devices Software Hardware Support 16
WTD initiative - Current State in the GC • The GC spends an estimated $660M annually on WTDs:  ~50% for end user device hardware and software acquisition.  ~50% for associated support services. • There are approximately 400,000 devices. • WTDs are currently costing departments an estimated $1,650 to $2,750 per device (represents full asset life cycle – Hardware, Software, and Support).  Industry benchmarks are significantly lower. • Departments are currently responsible for support services and efforts are underway to consolidate the procurement of WTD software and hardware within SSC. 17
WTD initiative – SSC Key Activities Software • • • SSC will standardize software offerings and consolidate procurement to leverage the government’s purchasing power. Asset management will be centralized and consolidated within SSC. During the transition period, partners and clients are to use existing procurement instruments (except for Microsoft products, which SSC will procure). Hardware/Devices • • SSC will standardize device offerings and consolidate procurement to leverage the government’s purchasing power. During the transition period, partners and clients are to use existing procurement instruments. Associated Support Services • • Partners and clients remain responsible for providing WTD Support Services. SSC will initiate pilot projects to explore optimal, cost-effective service delivery solutions for WTD Support Services. 18
WTD initiative - High Level Objectives for Pilot Projects Objective Description 1. Pricing Obtain “true” pricing from vendors that can be used in the WTD Business Case. 2. User Segmentation and Requirements Understand / evolve the user segmentation model and WTD business requirements for the Government of Canada. 3. Regional / International Delivery Understand approaches and risks for delivering services across the country and the world. 4. Emerging Technology Test emerging technologies (e.g. anywhere, anytime, any device). 5. Service Delivery and Sourcing Strategy Compare various service delivery and sourcing options. 19
Justice Canada Pilot Overview 20
Safe Harbour Statement The information contained within this presentation is intended to communicate preliminary requirements for the Justice Canada Pilot as part of an Industry engagement process and cannot be interpreted as a final contractual document. 21
Justice Canada Pilot – Business Objectives 1. Meet the operational requirements of Justice Canada with minimal impacts or change to users. 2. Use this pilot as a case study to: a) Help inform the WTD Enterprise Business Case b) Gather information on costing, requirements and risks related to delivering services to regional locations and remote users. c) Learn from a hybrid sourcing option where GC employees deliver Level 2 Deskside Support in collaboration with a vendor delivering Level 1 Service Desk and Level 3 WTD Engineering and Support services. 3. Evolve the GC Enterprise requirements and user segmentation strategy. 22
Justice Canada Pilot* - High Level Scope at a Glance Attribute Scope Size • ~5,850 end user devices Location • NCR and Regions • Includes Justice Canada and Public Prosecution Service of Canada Technology • “Traditional” Thick Client End User Devices • Printer Fleet Maintenance and Support Service Scope • Level 1 Service Desk • Level 2 Deskside Support (National Capital Region only) • Level 3 Desktop Engineering and Support Contract Length • 4 to 5 years Timing • Request for Proposal responses received by end of March, 2014 *The Justice Canada Pilot will consist of a Request for Proposal (RFP) for IT Support Services currently contracted out (current contract expiring on March 2015) 23
Justice Canada Pilot - Current State Attribute Parameters End User Devices* • • • • ~4,600 Desktops** ~1,250 Notebooks ~55 Windows 8 Tablets ~1,175 Printing devices Locations • Offices in 11 cities across Canada • 13 different locations in the National Capital Region (NCR) Number of Users • ~6,000 users (Justice Canada ~5000 + Office of the Director of Public Prosecutions ~1,000) Service Desk Call volumes • ~36,000 Incidents per year Sourcing Model*** • Contracted out: • Level 1 Service Desk – Enterprise Service • Level 2 Deskside Support –NCR locations only • Level 3 Desktop Engineering and Support – Enterprise Service • Insourced (GC employees): • Level 2 Deskside Support – Locations outside NCR Service Requests • ~7,000 Service Requests per year (NCR) • ~16,000 Service Requests per year (Total) Operating System • Windows 7 (implementation to be completed by contract award) * The Department delivers services through a mix of co-located departmental legal services units. In most cases, client departments are providing end users devices and associated support services to Justice Canada employees. ** Note that Justice Canada is moving towards a 70% Laptop / 30% Desktop mix over the next 12 months. *** Sourcing model to remain unchanged 24
Justice Canada Pilot – Hardware/Devices Provisioning Scope Attribute Vendor Responsibility GC Responsibility Ownership of all existing and new desktops, notebooks, Windows 8 tablets, printers and WTD related Software Yes Procurement of all new WTD devices (desktops, notebooks, Windows 8 tablets, printers), WTD related Software and printing consumables Yes Pre-staging of desktops, notebooks, Windows 8 tablets and printers Yes 25
Justice Canada Pilot - Level 1 Service Desk Provisioning Scope Attribute Vendor Responsibility Telephony toolset such as, Toll-free number(s), Automatic Call Distribution (ACD) and Interactive Voice Response solution (IVR) Yes Toolset for tracking of incidents, problems, changes, service requests (including Approval Workflow), and Configuration Management Database (CMDB) (On Vendor’s premises) Yes (On Vendor’s premises) Toolset for remote control of end user devices (Microsoft System Center Configuration Manager 2012) Provisioning of Self-service portal for end users, (includes , opening of tickets, searchable knowledge base, status open tickets, announcement of system outages and etc...) Resourcing to log, troubleshoot, resolve all Level 1 calls from Justice Canada users for applications and infrastructure Resourcing to assign/escalate tickets to other support levels GC Responsibility Yes (On GC premises) Yes (On Vendor’s premises) Yes (On Vendor’s premises) Yes 26
Justice Canada Pilot - Level 2 Deskside Support Provisioning Scope Attribute Resourcing for Level 2 Deskside Support (for Incidents and Service Requests) Resourcing for Break / Fix Services for hardware (End User Devices and Printers) Vendor Responsibility GC Responsibility Yes – NCR locations Yes – Locations outside NCR Yes Procurement of spare parts not under warrantee Coordination with hardware vendors for parts and warranty services Yes Yes 27
Justice Canada Pilot - Level 3 WTD Engineering and Support Provisioning Scope Attribute Vendor Responsibility GC Responsibility Yes (On GC premises) Software licenses and IT infrastructure of toolset for WTD Engineering and Support (includes Microsoft System Center Configuration Manager 2012) Configuration and management of toolset for WTD Engineering and Support (includes Microsoft System Center Configuration Manager 2012) Yes Image Management and Desktop Operating System deployment Yes Certification of new applications to be added to the image baseline Yes Software Packaging and Distribution Yes Patch Management and Distribution for end user devices Yes Anti-Virus Updates for end user devices Yes 28
Justice Canada Pilot – Provisioning Scope of Other Services Attribute Vendor Responsibility GC Responsibility Network Storage (share drives) Yes Support existing Justice Canada Terminal Services solution servers and OS Yes Manage existing Justice Canada Terminal Services solution presentation layer (e.g. Software layer on Terminal Services solution) Yes Provide Network Connectivity (Local and Remote) to end users Yes Privilege and Computer Network Account Management Yes LAN Management, Network Management and Monitoring Yes Print Server hardware and Printer Queue Management Software (including Maintenance and Support) Yes 29
Justice Canada Pilot - Contract and Security Requirements Attribute Justice Canada Pilot Requirements Limitation of Liability • The existing “Professional Services” Commodity Class will be used for the Limitation of Liability clauses Benchmarking • Industry benchmarking clauses will not be included in this contract Data Sovereignty • All data related to the solution must reside in Canada. This includes Service Management data Personnel Security Requirements • Depending on their specific role, vendor support staff may be required to be: • Canadian Citizens • Secret Cleared 30
Justice Canada Pilot - Service Catalog Requirements Catalog Item Attributes Office Worker • Desktop Device • NCR or Regional user • Standard Support or Premium Support Mobile Worker • Laptop Device and Docking Station • NCR or Regional user • Standard Support or Premium Support Network Printer • NCR or Regional location • Standard Support Personal Printer • NCR or Regional location • Standard Support Service Requests • Simple, Complex and “Priced Separately” Requests • A baseline number of Simple and Complex service requests are to be included in core service price • “Priced Separately” Requests will be priced by the vendor at the time of the request 31
Justice Canada Pilot - Level 1 Service Desk Targeted Service Levels Attribute Hours of Operation Standard Support • Attended: 6:00 - 20:00 [EST] o Live agents processing phone calls and emails requests o Troubleshoot, escalate to the appropriate group, if required • Unattended: 20:01 – 5:59 [EST] o Agent is on standby only o Phone requests only, emails are processed the following working day o Users leaves a voice message and agents have 30 minutes to call back o Best effort, no Deskside Level 2 on stand-by (unless special arrangement), unresolved incident are dealt with the following working day Premium Support • Same as standard 32
Justice Canada Pilot - Level 1 Service Desk Targeted Service Levels Attribute Standard Support Premium Support Max. Time to Answer • 3 rings, 95% of the time • 3 rings, 95% of the time Max. Time On Hold • 2 minutes, 95% of the time • 30 seconds, 95% of the time Max. Time to Escalate Unresolved Incidents • 30 minutes, 95% of the time • 15 minutes, 95% of the time Max. Time to Respond to Self Serve and Email Initiated Incidents • 30 minutes, 95% of the time • 5 minutes, 95% of the time First Call Resolution Rate (apps and infrastructure • 85% (for WTD related tickets) • 85% (for WTD related tickets) Service Desk Tool Availability • 99.5% uptime • 99.5% uptime Max. Time to Restore for Service Desk Tool • 4 hours • 4 hours * FGWD – Federal Government Working Days 33
Justice Canada Pilot - Level 2 Deskside Support Targeted Service Levels (NCR) Attribute Standard Support Premium Support Hours of Operation • 7am – 6pm (EST) on FGWDs* • 24 hours on FGWDs* Response Time • 4 hours from ticket assignment, 95% of the time • 2 hours from ticket assignment, 95% of the time Maximum Time to Restore • 1 FGWD, 95% of the time • 4 hours, 95% of the time Maximum Time to Fulfill Service Request • 5 FGWDs* for Simple requests, 95% of the time • 20 FGWDs* for Complex requests, 95% of the time • 5 FGWDs* for Simple requests, 95% of the time • 20 FGWDs* for Complex requests, 95% of the time * FGWD – Federal Government Working Days 34
Justice Canada Pilot - Summary of Questions for Industry Feedback 1. Based on the information provided on the Justice Canada pilot(s), please comment on the proposed scope and approach. 2. Do you have any comments or recommendations with respect to the approach for leveraging the Government-Furnished Equipment? 3. Given that Justice Canada end users are dispersed across the country, what strategies and options would vendors employ to ensure that these users receive consistent services? Can you share any lessons learned from previous experiences in delivering WTD support services to large geographically-distributed organizations? 4. Given the scope of the Justice Canada Pilot, do you have any suggestions on the pricing and evaluation strategy that should applied to the Pilot RFP? 5. Do you have standard catalogue offerings for WTD services? If so, what are they and what are the corresponding pricing models? 6. Are there emerging technologies or service enhancements for Workplace Technology Devices that SSC should consider testing through this pilot or another one? 7. How could the contract(s) be structured to allow new and emerging technologies to be leveraged while ensuring value to the crown over a long term contract? 8. What level of current state detail would be required to provide an accurate proposal and proceed with implementation of a pilot project? 9. What would you identify as the key challenges or barriers in providing WTD services that meet business needs (e.g. mobility, scalability, adaptability to new technology)? 10. Other comments? 35
Next Steps • Industry representatives are invited to submit written responses to the questions included in the notice and discussed today by November 20th 2013. • If clarification on any of the responses is required, follow-up meetings may be scheduled by SSC if necessary. • Additional industry engagement activities will be scheduled in the future in order to discuss broader considerations. • A draft of the Justice Canada RFP will be released for industry feedback. • The final Justice Canada RFP is expected to be released early March, 2014. 36
Questions? (for suppliers only) 37
Justice Canada Pilot Procurement Approach Michelle Beaton Supply Team Leader Procurement and Vendor Relationships, Shared Services Canada 38
Contents • Procurement considerations for the WTD initiative • Overview of SSC Procurement Processes • Engagement Activities Schedule • Procurement Approach and Schedule for the Justice Canada Pilot 39
Procurement Considerations for the WTD Initiative • A National Security Exception (NSE) may apply. • WTD will leverage the PWGSC Fairness Monitor Program to oversee all related procurement activities. Please go to http://www.tpsgc-pwgsc.gc.ca/se-fm/index-eng.html for more information. • It is anticipated that for all WTD pilot procurements, the vendor will be required to hold a valid Secret Level Security clearance. 40
SSC Procurement Processes Traditional Request For Proposal* Request for Proposal (RFP) Anticipated for WTD Pilots Award Contract Implementation Two-Phase Approach (Supply Chain Integrity (SCI) Invitation to Qualify)* Supply Chain Integrity (SCI) Invitation to Qualify (ITQ) - with draft RFP Request for Proposal (RFP) Implementation Award Contract Three-Phase Approach (Collaborative Procurement Solutions – CPS)* Invitation to Qualify (ITQ) Review and Refine Requirements (RRR) Request for Proposal (RFP) Award Contract Implementation * Engagement activities such as Industry Days, Letters of Interest, Requests for Information, etc. may precede the formal tendering process 41
Justice Canada Pilot – Industry Engagement Activities Schedule Justice Canada Pilot Industry Engagement Activities Industry Engagement Presentation 8 Nov 2013 Review Written Submissions Received by 20 Nov 2013 Written Submission Clarification Meetings Any time after the written submission in question has been received and reviewed. Written Submissions 42
Justice Canada Pilot - Anticipated Procurement Approach and Schedule Two-Phase Approach (Supply Chain Integrity (SCI) Invitation to Qualify (ITQ)) SCI Invitation to Qualify (ITQ) Includes draft RFP Early Jan – End Jan 2014 Request for Proposal (RFP) Early Mar – End Mar 2014 Award Contract Jun 2014 Implementation Summer 2014 43
Questions? (for vendors only) 44
Supply Chain Integrity (SCI) Workplace Technology Devices Initiative Industry Day November 8, 2013 Raj Thuppal, Director General, Cyber and IT Security Transformation Program 45
SCI in Competitive Procurements Optional Request for Information (RFI) and/or Industry Engagement Day and required Invitation to Qualify (ITQ) posted on GETS, and optional Review and Refine Requirements (RRR) sent to qualified respondents SCI determination & pre-requisite National Security Exception Respondents provide list of Information and Communications Technology (ICT) equipment, software and services Rejected respondent has 10 calendar days to resubmit revised equipment list 1st Rejection SCI Authority reviews ICT list in consultation with Security Partners Decision by SCI Authority No 2nd Yes SSC issues RFP to Qualified Respondents Receive Approval Letter for pre-qualification Debrief session with respondent Rejection Respondent does not qualify 46
Required Information from the Respondents • Once the SOW is finalized, GC will request that the respondents provide their Supply Chain Security Information. More specifically, when it applies, the GC will be requesting the following detailed information: 1. 2. 3. List of equipment used to deliver the service (vendor, manufacturer, model number, software load version). List of subcontractors (names of companies and the location from where these services are delivered). All of the above applies for sub-contractors and partners (subcontractors and their own sub-contractors). This should include all companies who will be sub-contracted to provide equipment or services as part of the Workplace Technology Devices Initiative. 47
On-going Supply Chain Integrity Auditing Rejected supplier has to resubmit revised ICT list On-going SCI auditing from the moment the contract has been awarded until it ends. Supplier provides revised ICT list SCI Authority reviews ICT list in consultation with Security Partners Decision by SCI Authority No Debrief session with supplier Yes Supplier receives Amendment Approval Letter SCI Authority monitors threats and audits results in consultation with Security Partners Threats? Yes Debrief session with supplier Internal threat evaluation can lead to the questionning/exclusion of specific equipment/services 48
Cyber & Supply Chain Threats to the GC Services partagés Canada – Workplace Technology Devices (WTD) Initiative • November 8, 2013 • Carey Frey, Director Strategic Relationships Office Communications Security Establishment Canada 49 4 9 49
UNCLASSIFIED CSEC: What We Do • CSEC: Canada’s national cryptologic agency • Our Mandate    Foreign Signals Intelligence IT Security Support to Lawful Access • ‘B’ Mandate  To provide advice, guidance and services to help ensure the protection of electronic information and of information infrastructures of importance to the Government of 5 Canada 50 50 0
UNCLASSIFIED CSEC: IT Security Program • We help prevent, detect and defend against IT security threats and vulnerabilities • CSEC provides unique technical expertise, capabilities and classified information that we use to complement commercial security technologies available to IT security practitioners • We use our own methods and operations to detect and defend against threats that are not in the public domain 51 5 1 51
UNCLASSIFIED Effects of Market Forces on Technology • Market forces favour commercial and personal technologies over requirements for security features • Our society is almost totally dependent on software and hardware commercial technology providers from global markets • New products and new versions of products are rapidly produced • No regulatory framework exists for hardware/software safety and security • Traditional government policies and processes impose security requirements after products and systems have been developed • Few incentives for commercial technology developers to invest in security 52 5 2 52
UNCLASSIFIED Technology Vulnerabilities • “People write software sloppily. Nobody checks it for mistakes before it gets sold”  Peiter Zatko (Mudge), WhiteHouse Cyber-Security Summit (2000) • Unintentional vulnerabilities or weaknesses  Design flaws  Implementation errors • Cyber Threat – a threat actor, using the Internet, takes advantage of a known vulnerability in a product for the purpose of exploiting a network and the information the network carries • Intentional vulnerabilities or weaknesses  Predetermined deliverables can be implanted in a product with or without knowledge of company. • Supply Chain Threat – a product can be easily tampered with in the supply chain to later facilitate a cyber-intrusion against that product in order to exploit a network and the information the network carries 53 5 3 53
UNCLASSIFIED The Evolving Cyber-Threat • Today, malicious cyber activities are directed against Canada and our closest allies on a daily basis • Threat actors range in sophistication from malfeasant hackers to organized crime groups, to terrorists to nation states • Canadians trust the GC to defend Canada’s cyber sovereignty and protect and advance our national security and economic interests 54 5 4 54
UNCLASSIFIED An Issue of National Security • Cyber security risks from end user devices       Easily compromised by cyber threat actors Vulnerable to vast range of social engineering techniques & variants of malicious software Difficult to remediate if exploitation becomes persistent eg: through BIOS Subjects other devices on the same network & infrastructure to easier compromise Must be frequently patched to remain secure Often connected in untrusted environments and introduce vulnerabilities into secure enterprises • Risks from the supply chain  Hardware and software are delivered with pre-positioned capabilities to facilitate cyber exploitation  Managed services present increased risks of social engineering, theft of credentials and access to GC information 55 5 5 55
UNCLASSIFIED GC Procurements • CSEC is working in partnership with GC departments to eliminate or significantly reduce risks to the GC from cyber threats & global supply chain vulnerabilities • CSEC will provide follow-up briefings on supply chain risk mitigation to interested suppliers for GC consolidated initiatives  Companies must be willing to sign a CSEC non-disclosure agreement to receive this information • Various security requirements for cyber-protection, cyber-defence and supply chain risk mitigation may be stated and must be met in order to successfully bid on such initiatives  As the IT Security authority for the GC, CSEC will seek long-term partnerships with successful suppliers  CSEC will assist Shared Services Canada in conducting any supply chain pedigree analysis where required for proposed procurements • Examples of these requirements can be found on CSEC’s website under Technology Supply Chain Guidance 56 5 6 56
Questions? (for suppliers only) 57
Recap & Closing Remarks 58

Recomendados

Accelerating Operational Excellence with IT/OT Convergence
Accelerating Operational Excellence with IT/OT ConvergenceAccelerating Operational Excellence with IT/OT Convergence
Accelerating Operational Excellence with IT/OT Convergence
Panduit
 
Partners in Technology 11Oct2013 DSDIP DLGCRR Mark Cushing
Partners in Technology 11Oct2013 DSDIP DLGCRR Mark CushingPartners in Technology 11Oct2013 DSDIP DLGCRR Mark Cushing
Partners in Technology 11Oct2013 DSDIP DLGCRR Mark Cushing
Digital Queensland
 
CyberVille® DHC System - May 12th, 2015
CyberVille® DHC System - May 12th, 2015CyberVille® DHC System - May 12th, 2015
CyberVille® DHC System - May 12th, 2015
Ville Mickelsson
 
Cellular Core Enterprise White Paper by Rethink Technology Research
Cellular Core Enterprise White Paper by Rethink Technology ResearchCellular Core Enterprise White Paper by Rethink Technology Research
Cellular Core Enterprise White Paper by Rethink Technology Research
Andy Odgers
 
Bhadale group of companies telecom sector programs catalogue
Bhadale group of companies telecom sector programs catalogueBhadale group of companies telecom sector programs catalogue
Bhadale group of companies telecom sector programs catalogue
Vijayananda Mohire
 
Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013
Prasant Mishra
 
National information infrastrcuture_Rrecommendations to Deptt of Electronics ...
National information infrastrcuture_Rrecommendations to Deptt of Electronics ...National information infrastrcuture_Rrecommendations to Deptt of Electronics ...
National information infrastrcuture_Rrecommendations to Deptt of Electronics ...
Prakash Kumar
 
UDC in a Box
UDC in a BoxUDC in a Box
UDC in a Box
Ericsson
 

Recomendados

Accelerating Operational Excellence with IT/OT Convergence
Accelerating Operational Excellence with IT/OT ConvergenceAccelerating Operational Excellence with IT/OT Convergence
Accelerating Operational Excellence with IT/OT Convergence
Panduit
 
Partners in Technology 11Oct2013 DSDIP DLGCRR Mark Cushing
Partners in Technology 11Oct2013 DSDIP DLGCRR Mark CushingPartners in Technology 11Oct2013 DSDIP DLGCRR Mark Cushing
Partners in Technology 11Oct2013 DSDIP DLGCRR Mark Cushing
Digital Queensland
 
CyberVille® DHC System - May 12th, 2015
CyberVille® DHC System - May 12th, 2015CyberVille® DHC System - May 12th, 2015
CyberVille® DHC System - May 12th, 2015
Ville Mickelsson
 
Cellular Core Enterprise White Paper by Rethink Technology Research
Cellular Core Enterprise White Paper by Rethink Technology ResearchCellular Core Enterprise White Paper by Rethink Technology Research
Cellular Core Enterprise White Paper by Rethink Technology Research
Andy Odgers
 
Bhadale group of companies telecom sector programs catalogue
Bhadale group of companies telecom sector programs catalogueBhadale group of companies telecom sector programs catalogue
Bhadale group of companies telecom sector programs catalogue
Vijayananda Mohire
 
Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013
Prasant Mishra
 
National information infrastrcuture_Rrecommendations to Deptt of Electronics ...
National information infrastrcuture_Rrecommendations to Deptt of Electronics ...National information infrastrcuture_Rrecommendations to Deptt of Electronics ...
National information infrastrcuture_Rrecommendations to Deptt of Electronics ...
Prakash Kumar
 
UDC in a Box
UDC in a BoxUDC in a Box
UDC in a Box
Ericsson
 
Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...
Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...
Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...
Panduit
 
Industrial IoT and OT/IT Convergence
Industrial IoT and OT/IT ConvergenceIndustrial IoT and OT/IT Convergence
Industrial IoT and OT/IT Convergence
Michelle Holley
 
Transformation through Innovation: A Strategy for Service Provider Success
Transformation through Innovation: A Strategy for Service Provider SuccessTransformation through Innovation: A Strategy for Service Provider Success
Transformation through Innovation: A Strategy for Service Provider Success
Cisco Service Provider
 
TGT Company Overview_Apr_2016
TGT Company Overview_Apr_2016TGT Company Overview_Apr_2016
TGT Company Overview_Apr_2016
Freddy Tse
 
Bandwidth On Demand - Dynamic Capacity
Bandwidth On Demand - Dynamic CapacityBandwidth On Demand - Dynamic Capacity
Bandwidth On Demand - Dynamic Capacity
litodelmo
 
Bizconnect from MMFSL for eOdisha Award 2013
Bizconnect from MMFSL for eOdisha Award 2013Bizconnect from MMFSL for eOdisha Award 2013
Bizconnect from MMFSL for eOdisha Award 2013
Prasant Mishra
 
Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013
Prasant Mishra
 
Blackberry in Government
Blackberry in GovernmentBlackberry in Government
Blackberry in Government
Commonwealth Telecommunications Organisation
 
Industry edge communications edition spring 2013
Industry edge communications edition spring 2013Industry edge communications edition spring 2013
Industry edge communications edition spring 2013
Jeff Edlund
 
Digital Railways presentation by Technology Strategy Board
Digital Railways presentation by Technology Strategy BoardDigital Railways presentation by Technology Strategy Board
Digital Railways presentation by Technology Strategy Board
KTN
 
Cio conference gary bullock
Cio conference gary bullockCio conference gary bullock
Cio conference gary bullock
Gillian Friend
 
Enterprise Business
Enterprise BusinessEnterprise Business
Enterprise Business
Panduit
 
AGH SMART CONSULTANCY SERVICES
AGH SMART CONSULTANCY SERVICESAGH SMART CONSULTANCY SERVICES
AGH SMART CONSULTANCY SERVICES
Sinan Saadoun
 
OEM to ISP Transformation
OEM to ISP TransformationOEM to ISP Transformation
OEM to ISP Transformation
Asia Pacific Cloud Apps Alliance
 
Controls-Con 2019 | Business Track
Controls-Con 2019 | Business TrackControls-Con 2019 | Business Track
Controls-Con 2019 | Business Track
Cochrane_Supply
 
The definitive guide for evaluating enterprise WLAN networks
The definitive guide for evaluating enterprise WLAN networksThe definitive guide for evaluating enterprise WLAN networks
The definitive guide for evaluating enterprise WLAN networks
Aerohive Networks
 
2016_01_01 InfoVista Corporate Presentation
2016_01_01 InfoVista Corporate Presentation2016_01_01 InfoVista Corporate Presentation
2016_01_01 InfoVista Corporate Presentation
Niklaus Seiler
 
Gtt Overview
Gtt OverviewGtt Overview
Gtt Overview
bigshowbrandon
 
Controls-Con 2019 | General Session
Controls-Con 2019 | General SessionControls-Con 2019 | General Session
Controls-Con 2019 | General Session
Cochrane_Supply
 
Who is ICC Networking
Who is ICC NetworkingWho is ICC Networking
Who is ICC Networking
International Communications Corporation
 
Accenture Technology Vision | Innovation World 2013 | San Francisco
Accenture Technology Vision | Innovation World 2013 | San Francisco Accenture Technology Vision | Innovation World 2013 | San Francisco
Accenture Technology Vision | Innovation World 2013 | San Francisco
Software AG
 
Workplace Innovation & Consulting
Workplace Innovation & ConsultingWorkplace Innovation & Consulting
Workplace Innovation & Consulting
ivanrip
 

Mais conteúdo relacionado

Mais procurados

Industrial IoT and OT/IT Convergence
Industrial IoT and OT/IT ConvergenceIndustrial IoT and OT/IT Convergence
Industrial IoT and OT/IT Convergence
Michelle Holley
 
TGT Company Overview_Apr_2016
TGT Company Overview_Apr_2016TGT Company Overview_Apr_2016
TGT Company Overview_Apr_2016
Freddy Tse
 
Bandwidth On Demand - Dynamic Capacity
Bandwidth On Demand - Dynamic CapacityBandwidth On Demand - Dynamic Capacity
Bandwidth On Demand - Dynamic Capacity
litodelmo
 
Cio conference gary bullock
Cio conference gary bullockCio conference gary bullock
Cio conference gary bullock
Gillian Friend
 
AGH SMART CONSULTANCY SERVICES
AGH SMART CONSULTANCY SERVICESAGH SMART CONSULTANCY SERVICES
AGH SMART CONSULTANCY SERVICES
Sinan Saadoun
 
Controls-Con 2019 | Business Track
Controls-Con 2019 | Business TrackControls-Con 2019 | Business Track
Controls-Con 2019 | Business Track
Cochrane_Supply
 
2016_01_01 InfoVista Corporate Presentation
2016_01_01 InfoVista Corporate Presentation2016_01_01 InfoVista Corporate Presentation
2016_01_01 InfoVista Corporate Presentation
Niklaus Seiler
 
Controls-Con 2019 | General Session
Controls-Con 2019 | General SessionControls-Con 2019 | General Session
Controls-Con 2019 | General Session
Cochrane_Supply
 

Mais procurados (20)

Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...
Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...
Managing the Impact and Cost of the IOT Data Explosion - Data Centre Converge...
 
Industrial IoT and OT/IT Convergence
Industrial IoT and OT/IT ConvergenceIndustrial IoT and OT/IT Convergence
Industrial IoT and OT/IT Convergence
 
Transformation through Innovation: A Strategy for Service Provider Success
Transformation through Innovation: A Strategy for Service Provider SuccessTransformation through Innovation: A Strategy for Service Provider Success
Transformation through Innovation: A Strategy for Service Provider Success
 
TGT Company Overview_Apr_2016
TGT Company Overview_Apr_2016TGT Company Overview_Apr_2016
TGT Company Overview_Apr_2016
 
Bandwidth On Demand - Dynamic Capacity
Bandwidth On Demand - Dynamic CapacityBandwidth On Demand - Dynamic Capacity
Bandwidth On Demand - Dynamic Capacity
 
Bizconnect from MMFSL for eOdisha Award 2013
Bizconnect from MMFSL for eOdisha Award 2013Bizconnect from MMFSL for eOdisha Award 2013
Bizconnect from MMFSL for eOdisha Award 2013
 
Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013Bizconnect for eOdisha Award 2013
Bizconnect for eOdisha Award 2013
 
Blackberry in Government
Blackberry in GovernmentBlackberry in Government
Blackberry in Government
 
Industry edge communications edition spring 2013
Industry edge communications edition spring 2013Industry edge communications edition spring 2013
Industry edge communications edition spring 2013
 
Digital Railways presentation by Technology Strategy Board
Digital Railways presentation by Technology Strategy BoardDigital Railways presentation by Technology Strategy Board
Digital Railways presentation by Technology Strategy Board
 
Cio conference gary bullock
Cio conference gary bullockCio conference gary bullock
Cio conference gary bullock
 
Enterprise Business
Enterprise BusinessEnterprise Business
Enterprise Business
 
AGH SMART CONSULTANCY SERVICES
AGH SMART CONSULTANCY SERVICESAGH SMART CONSULTANCY SERVICES
AGH SMART CONSULTANCY SERVICES
 
OEM to ISP Transformation
OEM to ISP TransformationOEM to ISP Transformation
OEM to ISP Transformation
 
Controls-Con 2019 | Business Track
Controls-Con 2019 | Business TrackControls-Con 2019 | Business Track
Controls-Con 2019 | Business Track
 
The definitive guide for evaluating enterprise WLAN networks
The definitive guide for evaluating enterprise WLAN networksThe definitive guide for evaluating enterprise WLAN networks
The definitive guide for evaluating enterprise WLAN networks
 
2016_01_01 InfoVista Corporate Presentation
2016_01_01 InfoVista Corporate Presentation2016_01_01 InfoVista Corporate Presentation
2016_01_01 InfoVista Corporate Presentation
 
Gtt Overview
Gtt OverviewGtt Overview
Gtt Overview
 
Controls-Con 2019 | General Session
Controls-Con 2019 | General SessionControls-Con 2019 | General Session
Controls-Con 2019 | General Session
 
Who is ICC Networking
Who is ICC NetworkingWho is ICC Networking
Who is ICC Networking
 

Destaque

TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...
TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...
TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...
Sociotechnical Roundtable
 
PSFK Future of Work Report
PSFK Future of Work ReportPSFK Future of Work Report
PSFK Future of Work Report
PSFK
 

Destaque (8)

Accenture Technology Vision | Innovation World 2013 | San Francisco
Accenture Technology Vision | Innovation World 2013 | San Francisco Accenture Technology Vision | Innovation World 2013 | San Francisco
Accenture Technology Vision | Innovation World 2013 | San Francisco
 
Workplace Innovation & Consulting
Workplace Innovation & ConsultingWorkplace Innovation & Consulting
Workplace Innovation & Consulting
 
TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...
TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...
TED Talk – Van der Meulen – EUWIN - Workplace Innovation: Creating a mass mov...
 
VI-241: Innovation with Deltek Vision
VI-241: Innovation with Deltek VisionVI-241: Innovation with Deltek Vision
VI-241: Innovation with Deltek Vision
 
Driving Repeatable Business Innovation: The Vision to Action Lifecycle
Driving Repeatable Business Innovation: The Vision to Action LifecycleDriving Repeatable Business Innovation: The Vision to Action Lifecycle
Driving Repeatable Business Innovation: The Vision to Action Lifecycle
 
Euwin presentation odam 2014 prof geert van hootegem total workplace innovation
Euwin presentation odam 2014 prof geert van hootegem total workplace innovationEuwin presentation odam 2014 prof geert van hootegem total workplace innovation
Euwin presentation odam 2014 prof geert van hootegem total workplace innovation
 
THNK Corporate Innovation Programs
THNK Corporate Innovation ProgramsTHNK Corporate Innovation Programs
THNK Corporate Innovation Programs
 
PSFK Future of Work Report
PSFK Future of Work ReportPSFK Future of Work Report
PSFK Future of Work Report
 

Semelhante a Workplace Technology Devices (WTD) Initiative

Norland ict services overview r7
Norland ict services overview r7Norland ict services overview r7
Norland ict services overview r7
norlandict
 
Cisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform Journey
Cisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform JourneyCisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform Journey
Cisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform Journey
Lluis Altes
 
Aitp presentation ed holub - october 23 2010
Aitp presentation ed holub - october 23 2010Aitp presentation ed holub - october 23 2010
Aitp presentation ed holub - october 23 2010
AITPHouston
 

Semelhante a Workplace Technology Devices (WTD) Initiative (20)

2014 sept-9-shared-services-canada
2014 sept-9-shared-services-canada2014 sept-9-shared-services-canada
2014 sept-9-shared-services-canada
 
2014 june-11-transformation-plan-update-en
2014 june-11-transformation-plan-update-en2014 june-11-transformation-plan-update-en
2014 june-11-transformation-plan-update-en
 
Shared Services Canada - Transformation Initiatives
Shared Services Canada - Transformation InitiativesShared Services Canada - Transformation Initiatives
Shared Services Canada - Transformation Initiatives
 
Deployment of scalable reliable and collaborative technology
Deployment of scalable reliable and collaborative technologyDeployment of scalable reliable and collaborative technology
Deployment of scalable reliable and collaborative technology
 
Input Fed Focus 2010 Presentation
Input Fed Focus 2010 PresentationInput Fed Focus 2010 Presentation
Input Fed Focus 2010 Presentation
 
Transformation overview-final-oct-7-2014
Transformation overview-final-oct-7-2014Transformation overview-final-oct-7-2014
Transformation overview-final-oct-7-2014
 
Gurpreet+proposal (1).pptx
Gurpreet+proposal (1).pptxGurpreet+proposal (1).pptx
Gurpreet+proposal (1).pptx
 
Network Solutions Supply Chain Industry Day_May28_2014_Consolidated
Network Solutions Supply Chain Industry Day_May28_2014_ConsolidatedNetwork Solutions Supply Chain Industry Day_May28_2014_Consolidated
Network Solutions Supply Chain Industry Day_May28_2014_Consolidated
 
Jonathan Newton - Vodafone
Jonathan Newton - VodafoneJonathan Newton - Vodafone
Jonathan Newton - Vodafone
 
Government of Canada Integrated IT Planning Presetation
Government of Canada Integrated IT Planning PresetationGovernment of Canada Integrated IT Planning Presetation
Government of Canada Integrated IT Planning Presetation
 
Norland ict services overview r7
Norland ict services overview r7Norland ict services overview r7
Norland ict services overview r7
 
Key IT and Digital Investment Areas Shaping the Industry.pdf
Key IT and Digital Investment Areas Shaping the Industry.pdfKey IT and Digital Investment Areas Shaping the Industry.pdf
Key IT and Digital Investment Areas Shaping the Industry.pdf
 
UC: The Light at the End of the Tunnel
UC: The Light at the End of the TunnelUC: The Light at the End of the Tunnel
UC: The Light at the End of the Tunnel
 
Telecom italia oss transformation roadmap marco daccò venice 2010
Telecom italia oss transformation roadmap marco daccò venice 2010Telecom italia oss transformation roadmap marco daccò venice 2010
Telecom italia oss transformation roadmap marco daccò venice 2010
 
Connections II Overview - August 2013 Webinar
Connections II Overview - August 2013 WebinarConnections II Overview - August 2013 Webinar
Connections II Overview - August 2013 Webinar
 
Cisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform Journey
Cisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform JourneyCisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform Journey
Cisco's FY 2Q14 Earnings Reflect IDC's 3rd Platform Journey
 
IT Sourcing towards the Cloud
IT Sourcing towards the Cloud IT Sourcing towards the Cloud
IT Sourcing towards the Cloud
 
Aitp presentation ed holub - october 23 2010
Aitp presentation ed holub - october 23 2010Aitp presentation ed holub - october 23 2010
Aitp presentation ed holub - october 23 2010
 
July 9 ssc_gc_net_wan_service_industry_day_slides
July 9 ssc_gc_net_wan_service_industry_day_slidesJuly 9 ssc_gc_net_wan_service_industry_day_slides
July 9 ssc_gc_net_wan_service_industry_day_slides
 
Presentation 23 11_10.34265106 (1)
Presentation 23 11_10.34265106 (1)Presentation 23 11_10.34265106 (1)
Presentation 23 11_10.34265106 (1)
 

Mais de KBIZEAU

Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
Pablo sobrino smart-dps presentation to itac - march 4-2014 - englishPablo sobrino smart-dps presentation to itac - march 4-2014 - english
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
KBIZEAU
 
SSC PSAB Policy w/Multiyear Performance Objectives
SSC PSAB Policy w/Multiyear Performance ObjectivesSSC PSAB Policy w/Multiyear Performance Objectives
SSC PSAB Policy w/Multiyear Performance Objectives
KBIZEAU
 

Mais de KBIZEAU (20)

Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
Annual Check Up: One Year Follow-Up Regarding Shared Services Canada, IT Mode...
 
Review of the Collaborative Procurement Process
Review of the Collaborative Procurement ProcessReview of the Collaborative Procurement Process
Review of the Collaborative Procurement Process
 
Delivering Public Sector Innovation
Delivering Public Sector InnovationDelivering Public Sector Innovation
Delivering Public Sector Innovation
 
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
Leveraging Procurement for Socio-Economic Benefits - Presentation by Acting C...
 
Hill timesarticle sharedservicescanada
Hill timesarticle sharedservicescanadaHill timesarticle sharedservicescanada
Hill timesarticle sharedservicescanada
 
Itir oct0714-network security-en
Itir oct0714-network security-enItir oct0714-network security-en
Itir oct0714-network security-en
 
Itir oct0714-afac report-en
Itir oct0714-afac report-enItir oct0714-afac report-en
Itir oct0714-afac report-en
 
Ssac summary-report-2014-en
Ssac summary-report-2014-enSsac summary-report-2014-en
Ssac summary-report-2014-en
 
Ssac summary-report-2014-en
Ssac summary-report-2014-enSsac summary-report-2014-en
Ssac summary-report-2014-en
 
AFAC session 2 - September 8, 2014
AFAC session 2 - September 8, 2014AFAC session 2 - September 8, 2014
AFAC session 2 - September 8, 2014
 
Ssc 2014 2015 integrated business plan
Ssc 2014 2015 integrated business planSsc 2014 2015 integrated business plan
Ssc 2014 2015 integrated business plan
 
Afac device-security-july-7-2014v7-2
Afac device-security-july-7-2014v7-2Afac device-security-july-7-2014v7-2
Afac device-security-july-7-2014v7-2
 
2014 june-11-update-on-ssc-priorities-and-activities-en
2014 june-11-update-on-ssc-priorities-and-activities-en2014 june-11-update-on-ssc-priorities-and-activities-en
2014 june-11-update-on-ssc-priorities-and-activities-en
 
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
Shared Services Canada - Architect Framework Advisory Committee WTD Session 5...
 
Shared Services Canada - Reports on Plans and Priorities 2014-2015
Shared Services Canada - Reports on Plans and Priorities 2014-2015Shared Services Canada - Reports on Plans and Priorities 2014-2015
Shared Services Canada - Reports on Plans and Priorities 2014-2015
 
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
Pablo sobrino smart-dps presentation to itac - march 4-2014 - englishPablo sobrino smart-dps presentation to itac - march 4-2014 - english
Pablo sobrino smart-dps presentation to itac - march 4-2014 - english
 
SSC PSAB Policy w/Multiyear Performance Objectives
SSC PSAB Policy w/Multiyear Performance ObjectivesSSC PSAB Policy w/Multiyear Performance Objectives
SSC PSAB Policy w/Multiyear Performance Objectives
 
Future Role of the CIO
Future Role of the CIO Future Role of the CIO
Future Role of the CIO
 
“Increase Value of IT Services Through Application Portfolio Management” deli...
“Increase Value of IT Services Through Application Portfolio Management” deli...“Increase Value of IT Services Through Application Portfolio Management” deli...
“Increase Value of IT Services Through Application Portfolio Management” deli...
 
Ssc sep 24_2013_industry_engagement_day_notice_-_en (1)
Ssc sep 24_2013_industry_engagement_day_notice_-_en (1)Ssc sep 24_2013_industry_engagement_day_notice_-_en (1)
Ssc sep 24_2013_industry_engagement_day_notice_-_en (1)
 

Último

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 

Último (20)

2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 

Workplace Technology Devices (WTD) Initiative

  • 1. Industry Day on Pilot Projects November 8, 2013 1
  • 2. WTD Industry Day on Pilot Projects – Objectives During the Industry Day Presentation, SSC will provide potential vendors with: • a high-level overview of the Workplace Technology Devices initiative and the pilot projects which includes the proposed approach, the potential scope, and high-level requirements; • an explanation of the proposed procurement approach for the pilots; • a discussion regarding the Cyber Security Supply Chain Integrity Threat; and • the opportunity to provide feedback on the level of interest among their companies and associations related to the pilots and their scope and requirements. 2
  • 3. Workplace Technology Devices: Industry Day November 8, 2013 Benoît Long Senior Assistant Deputy Minister Transformation, Service Strategy and Design 3
  • 4. Shared Services Canada Background / Context Budget 2011 A New Organization with an IT Focus STANDARDIZE Raison d’être  Reduce costs  Improve security  Maximize efficiencies  Minimize risks CONSOLIDATE RE-ENGINEER 4
  • 5. A Year in Review TELECOMMUNICATIONS EMAIL • Transformed the procurement process • Completed the procurement process with industry • June 25, 2013: contract awarded to Bell and CGI Systems WORKPLACE TECHNOLOGY DEVICES • June 2013: Cabinet support for Transformation Plan • Hosted Industry engagement days for GC Network and Wide-Area network, converged communications • Implemented Government Enterprise System (GENS) in 130 of 3850 buildings; IIS procurement • One-year interim agreement with Microsoft To be replaced by WTD icon DATA CENTRES • June 2013: Cabinet support for Transformation Plan. • Hosted industry engagement day on data centre platforms. • Developed concensus between SSC and industry on fundamental directions on technology and service orientation. • Centre de données Ouest de Quebec: created horizontal teams across SSC; opening of first development data centre. CYBER AND IT SECURITY • January 2013: launched two-step procurement process to strengthen supply chain integrity • Managed Security Service 5
  • 6. Target End State Cyber Threats Target end state: Less than 10 data centres Allies (+International) Canadians Next pair(s): Next set of production data centres • If /as required (to be confirmed) • Located outside of NCR and ON High Performance computing - specialized supercomputing facility GC Network Public Servants Enhanced Enterprise Security Second pair: First set of production data centres • GC-owned facility on the Canadian Forces Base (CFB) Borden • Site located within 100 km of Borden Businesses Governments • Most outside of the National Capital Region First pair: Development data centres • GC-owned MacdonaldCartier in Ottawa • Bell Canada in Gatineau • Virtual Private Cloud • Established in pairs for redundancy • Mostly private sectorowned Target end state: Streamlined networks Internet Regional and International Carriers (377 000 users; 3,580 buildings) GC Offices Production 1 & 2 Production 3 & 4 Business Continuity Sensitive Data Enclaves Development 1& 2 Supercomputers Connecting 377 000 public servants to each other and to Canadians • Linking 3 580 GCoccupied buildings Key components include: • Single enterprise-wide network with enhanced capacity and robustness • Ultra high-speed, no fail connectivity between data centres • Greater, more secure Internet connectivity • Streamlined and wireless telecom infrastructure inside buildings • Voice services (VoIP) (wired and wireless) • More desktop videoconferencing services • Contact Centre Infrastructure Services • Enhanced security through consolidated security services and increased perimeter security 6
  • 7. Transformation Timelines Q1 EMAIL && EMAIL BB10 BB10 DATA DATA ENTRE CCENTERS Fiscal Year (FY) 13/14 Q2 Q3 Q4 Wave 0 complete EMAIL Borden / Production 1 Interim Established PRODUCTION NOLOGY DEVICES FY 15/16 Q1 Q2 Strategy for Multi-Tenant buildings & trusted source guests GC Service Established CYBER SECURITY IT SECURITY GC SECURE INFRASTRUCTURE Security Operations Centre Release 1 Managed Security Service Contract Award & Migration Software Service Design FY 16/17 Q2 Q3 FY FY FY 17/18 18/19 19/20 Q4 Mcdonald Cartier Data Centre / Development 2 Refurbishment Complete Borden / Production 1 Expansion Complete Production 4 Established Production 3 Established Supercomputing Consolidation Complete Pilot Contract Award(s) Contract Award Security Operations Centre Release 2 Building-by-building migration begins Migration Complete Migration Complete Migration to enterprise services (Contact Centre Infrastructure and Toll Free Services Building-by-building migration begins Network Security Transformation Plan Industry Day Q1 BB10 rollout complete Consolidation Complete Migration Complete Migration Complete Security Operations Centre Release 3 Identity Credential Access Mgmt Release 1 Consolidate / Migrate Release 2 / Initiate Consolidation SUPPORT SERVICES PROVISIONING SERVICES Q4 Building-by-building migration begins Contract Awards GCNET WAN Q3 Wave 3 complete Science Data Centre Replacement Complete HOST. IP - VOICE WORKPLACE WORKPLACE TECHNOLOGY TECHDEVICES Q4 Production 2 Established CONTACT CENTRE CYBER AND IT SECURITY Q3 Centre de Données l’Ouest du Québec/Development 1 Complete DEVELOPMENT CONFERENCE Q2 Pilot (SSC, TBS, Foreign Affairs and Trade Development Canada Execute Wave 1 BB10 WIFI / LAN VIDEO- FY 14/15 Wave 1 Wave 2 complete complete SCIENTIFIC NETWORKS NETWORK Q1 Pilot Business Case Pilot Contract Award Software Sourcing Strategy Hardware Service Design Hardware Sourcing Strategy 7
  • 8. SSC Transformation Timelines – Workplace Technology Devices Q1 WORKPLACE TECHNOLOGY DEVICES SUPPORT SERVICES FY 13/14 Q2 Industry Day Q3 Q4 Pilot Business Case Q1 FY 14/15 Q2 Q3 FY 15/16 Q4 Q1 Enterprise Business Case Pilot Contract Award PROVISIONING SERVICES Software Service Design Software Sourcing Strategy Hardware Service Design Hardware Sourcing Strategy 8
  • 9. What To Expect Over The Next Year • Wave 0 and Wave 1 departments are migrated to new Email and Blackberry 10 services • Transformation of the current hardware/software/network supply arrangements to support platform standardization • DEV 1 and PROD 1 come online – migrations begin • Sourcing • GCNet is procured and detailed implementation planning and execution begins • VC services established; Contact Centre enterprise technology services and hosted IP service procured • Security Operations Centre release 2 • Plan for consolidation of secure infrastructure developed To be replaced by WTD icon • Industry engagement (industry days and Architecture Framework Advisory Committee) • Pilots selected and procured • Software and hardware standardization and provisioning services begin 9
  • 10. What is the Workplace Technology Devices initiative? • The Workplace Technology Devices (WTD) initiative will standardize, consolidate and re-engineer the delivery of end user device hardware, software and associated support services in the Government of Canada to reduce costs and increase security for 95 organizations (includes SSC, and 43 partner and 51 client departments and agencies). • The initiative was established following announcements in Budget 2013 and the approval of Orders-in-Council (OiC) 2013-0368 in April 2013. The OiC mandated SSC with the responsibility for the procurement of hardware and software, including security software, and related support services for end user devices. • Organizations continue to be responsible for WTD support services, however SSC was asked to explore how these services could be modernized. • 10
  • 11. Workplace Technology Devices Initiative: Background “Economic Action Plan 2013 takes concrete action to reduce duplication in government information technology (IT) by standardizing and consolidating the procurement of end-user devices and transitioning to a single platform for federal email systems. • Generate savings through software consolidation from a base of Federal departments are currently individually responsible for procuring end-user IT $124M devices for their employees—including computers, operating software, and peripherals such as Printers—as well as providing the associated IT support services. Duplication of  2013/14 - $2.1M effort in these activities has resulted in the Government spending significantly more than 2014/15 - $8.7M the private sector. By moving away from each department independently managing these activities, there are opportunities to drive economies of scale, achieve savings for taxpayers and improve service. Therefore, Economic Action Plan 2013 announces the consolidation and standardization of software procurement for end-user devices for federal employees, resulting in annual savings of $8.7 million beginning in 2014–15. Moving forward, the Government will explore further whole-of-government approaches to reduce costs in the area of procurement of end-user devices and associated support services”. – Budget 2013. 11
  • 13. Background on the Workplace Technology Devices Initiative and Justice Canada Pilot Overview Gail Eagen, Director General, Workplace Technology Devices Initiative, Transformation, Service Strategy and Design, Shared Services Canada André Arsenault Director, Workplace Technology Devices Initiative, Transformation, Service Strategy and Design, Shared Services Canada 13
  • 14. Contents • Scope the Workplace Technology Devices initiative and update on current activities • Justice Canada Pilot Overview 14
  • 15. WTD initiative - Scope* Departmental Responsibility Partners and Clients USER Email and Directory Service FACING SERVICES ENABLING SERVICES Desktop Services File/Print Service Provisioning Services Desktop and Office Productivity Suite Remote Access Service Service Management Work Group Collaborative Services Information Technology (IT) Security * According to the Government of Canada Profile of IT Services RESOURCES Software Legend: Government of Canada Corporate / Program Application Services Contracts Email – Shared Services Canada (SSC) Scope Hardware People Workplace Technology Devices Scope Facilities Departmental scope 15
  • 16. WTD initiative - Scope • WTD Hardware includes client computers: desktops, laptops, notebooks, tablets and peripherals such as printers and scanners. Hardware services include Acquisition and Provisioning. • WTD Software includes operating systems, office productivity suite, and security software (e.g. Antivirus). It also includes desktop virtualisation technologies and mobile device management. Software services include Acquisition and Provisioning. • WTD Associated Support services include Level 1 Service Desk Support, Level 2 Deskside Support (break-fix, troubleshooting, configuration and installation), WTD Device Engineering and Management (e.g. Patch Management and Software Distribution). Workplace Technology Devices Software Hardware Support 16
  • 17. WTD initiative - Current State in the GC • The GC spends an estimated $660M annually on WTDs:  ~50% for end user device hardware and software acquisition.  ~50% for associated support services. • There are approximately 400,000 devices. • WTDs are currently costing departments an estimated $1,650 to $2,750 per device (represents full asset life cycle – Hardware, Software, and Support).  Industry benchmarks are significantly lower. • Departments are currently responsible for support services and efforts are underway to consolidate the procurement of WTD software and hardware within SSC. 17
  • 18. WTD initiative – SSC Key Activities Software • • • SSC will standardize software offerings and consolidate procurement to leverage the government’s purchasing power. Asset management will be centralized and consolidated within SSC. During the transition period, partners and clients are to use existing procurement instruments (except for Microsoft products, which SSC will procure). Hardware/Devices • • SSC will standardize device offerings and consolidate procurement to leverage the government’s purchasing power. During the transition period, partners and clients are to use existing procurement instruments. Associated Support Services • • Partners and clients remain responsible for providing WTD Support Services. SSC will initiate pilot projects to explore optimal, cost-effective service delivery solutions for WTD Support Services. 18
  • 19. WTD initiative - High Level Objectives for Pilot Projects Objective Description 1. Pricing Obtain “true” pricing from vendors that can be used in the WTD Business Case. 2. User Segmentation and Requirements Understand / evolve the user segmentation model and WTD business requirements for the Government of Canada. 3. Regional / International Delivery Understand approaches and risks for delivering services across the country and the world. 4. Emerging Technology Test emerging technologies (e.g. anywhere, anytime, any device). 5. Service Delivery and Sourcing Strategy Compare various service delivery and sourcing options. 19
  • 20. Justice Canada Pilot Overview 20
  • 21. Safe Harbour Statement The information contained within this presentation is intended to communicate preliminary requirements for the Justice Canada Pilot as part of an Industry engagement process and cannot be interpreted as a final contractual document. 21
  • 22. Justice Canada Pilot – Business Objectives 1. Meet the operational requirements of Justice Canada with minimal impacts or change to users. 2. Use this pilot as a case study to: a) Help inform the WTD Enterprise Business Case b) Gather information on costing, requirements and risks related to delivering services to regional locations and remote users. c) Learn from a hybrid sourcing option where GC employees deliver Level 2 Deskside Support in collaboration with a vendor delivering Level 1 Service Desk and Level 3 WTD Engineering and Support services. 3. Evolve the GC Enterprise requirements and user segmentation strategy. 22
  • 23. Justice Canada Pilot* - High Level Scope at a Glance Attribute Scope Size • ~5,850 end user devices Location • NCR and Regions • Includes Justice Canada and Public Prosecution Service of Canada Technology • “Traditional” Thick Client End User Devices • Printer Fleet Maintenance and Support Service Scope • Level 1 Service Desk • Level 2 Deskside Support (National Capital Region only) • Level 3 Desktop Engineering and Support Contract Length • 4 to 5 years Timing • Request for Proposal responses received by end of March, 2014 *The Justice Canada Pilot will consist of a Request for Proposal (RFP) for IT Support Services currently contracted out (current contract expiring on March 2015) 23
  • 24. Justice Canada Pilot - Current State Attribute Parameters End User Devices* • • • • ~4,600 Desktops** ~1,250 Notebooks ~55 Windows 8 Tablets ~1,175 Printing devices Locations • Offices in 11 cities across Canada • 13 different locations in the National Capital Region (NCR) Number of Users • ~6,000 users (Justice Canada ~5000 + Office of the Director of Public Prosecutions ~1,000) Service Desk Call volumes • ~36,000 Incidents per year Sourcing Model*** • Contracted out: • Level 1 Service Desk – Enterprise Service • Level 2 Deskside Support –NCR locations only • Level 3 Desktop Engineering and Support – Enterprise Service • Insourced (GC employees): • Level 2 Deskside Support – Locations outside NCR Service Requests • ~7,000 Service Requests per year (NCR) • ~16,000 Service Requests per year (Total) Operating System • Windows 7 (implementation to be completed by contract award) * The Department delivers services through a mix of co-located departmental legal services units. In most cases, client departments are providing end users devices and associated support services to Justice Canada employees. ** Note that Justice Canada is moving towards a 70% Laptop / 30% Desktop mix over the next 12 months. *** Sourcing model to remain unchanged 24
  • 25. Justice Canada Pilot – Hardware/Devices Provisioning Scope Attribute Vendor Responsibility GC Responsibility Ownership of all existing and new desktops, notebooks, Windows 8 tablets, printers and WTD related Software Yes Procurement of all new WTD devices (desktops, notebooks, Windows 8 tablets, printers), WTD related Software and printing consumables Yes Pre-staging of desktops, notebooks, Windows 8 tablets and printers Yes 25
  • 26. Justice Canada Pilot - Level 1 Service Desk Provisioning Scope Attribute Vendor Responsibility Telephony toolset such as, Toll-free number(s), Automatic Call Distribution (ACD) and Interactive Voice Response solution (IVR) Yes Toolset for tracking of incidents, problems, changes, service requests (including Approval Workflow), and Configuration Management Database (CMDB) (On Vendor’s premises) Yes (On Vendor’s premises) Toolset for remote control of end user devices (Microsoft System Center Configuration Manager 2012) Provisioning of Self-service portal for end users, (includes , opening of tickets, searchable knowledge base, status open tickets, announcement of system outages and etc...) Resourcing to log, troubleshoot, resolve all Level 1 calls from Justice Canada users for applications and infrastructure Resourcing to assign/escalate tickets to other support levels GC Responsibility Yes (On GC premises) Yes (On Vendor’s premises) Yes (On Vendor’s premises) Yes 26
  • 27. Justice Canada Pilot - Level 2 Deskside Support Provisioning Scope Attribute Resourcing for Level 2 Deskside Support (for Incidents and Service Requests) Resourcing for Break / Fix Services for hardware (End User Devices and Printers) Vendor Responsibility GC Responsibility Yes – NCR locations Yes – Locations outside NCR Yes Procurement of spare parts not under warrantee Coordination with hardware vendors for parts and warranty services Yes Yes 27
  • 28. Justice Canada Pilot - Level 3 WTD Engineering and Support Provisioning Scope Attribute Vendor Responsibility GC Responsibility Yes (On GC premises) Software licenses and IT infrastructure of toolset for WTD Engineering and Support (includes Microsoft System Center Configuration Manager 2012) Configuration and management of toolset for WTD Engineering and Support (includes Microsoft System Center Configuration Manager 2012) Yes Image Management and Desktop Operating System deployment Yes Certification of new applications to be added to the image baseline Yes Software Packaging and Distribution Yes Patch Management and Distribution for end user devices Yes Anti-Virus Updates for end user devices Yes 28
  • 29. Justice Canada Pilot – Provisioning Scope of Other Services Attribute Vendor Responsibility GC Responsibility Network Storage (share drives) Yes Support existing Justice Canada Terminal Services solution servers and OS Yes Manage existing Justice Canada Terminal Services solution presentation layer (e.g. Software layer on Terminal Services solution) Yes Provide Network Connectivity (Local and Remote) to end users Yes Privilege and Computer Network Account Management Yes LAN Management, Network Management and Monitoring Yes Print Server hardware and Printer Queue Management Software (including Maintenance and Support) Yes 29
  • 30. Justice Canada Pilot - Contract and Security Requirements Attribute Justice Canada Pilot Requirements Limitation of Liability • The existing “Professional Services” Commodity Class will be used for the Limitation of Liability clauses Benchmarking • Industry benchmarking clauses will not be included in this contract Data Sovereignty • All data related to the solution must reside in Canada. This includes Service Management data Personnel Security Requirements • Depending on their specific role, vendor support staff may be required to be: • Canadian Citizens • Secret Cleared 30
  • 31. Justice Canada Pilot - Service Catalog Requirements Catalog Item Attributes Office Worker • Desktop Device • NCR or Regional user • Standard Support or Premium Support Mobile Worker • Laptop Device and Docking Station • NCR or Regional user • Standard Support or Premium Support Network Printer • NCR or Regional location • Standard Support Personal Printer • NCR or Regional location • Standard Support Service Requests • Simple, Complex and “Priced Separately” Requests • A baseline number of Simple and Complex service requests are to be included in core service price • “Priced Separately” Requests will be priced by the vendor at the time of the request 31
  • 32. Justice Canada Pilot - Level 1 Service Desk Targeted Service Levels Attribute Hours of Operation Standard Support • Attended: 6:00 - 20:00 [EST] o Live agents processing phone calls and emails requests o Troubleshoot, escalate to the appropriate group, if required • Unattended: 20:01 – 5:59 [EST] o Agent is on standby only o Phone requests only, emails are processed the following working day o Users leaves a voice message and agents have 30 minutes to call back o Best effort, no Deskside Level 2 on stand-by (unless special arrangement), unresolved incident are dealt with the following working day Premium Support • Same as standard 32
  • 33. Justice Canada Pilot - Level 1 Service Desk Targeted Service Levels Attribute Standard Support Premium Support Max. Time to Answer • 3 rings, 95% of the time • 3 rings, 95% of the time Max. Time On Hold • 2 minutes, 95% of the time • 30 seconds, 95% of the time Max. Time to Escalate Unresolved Incidents • 30 minutes, 95% of the time • 15 minutes, 95% of the time Max. Time to Respond to Self Serve and Email Initiated Incidents • 30 minutes, 95% of the time • 5 minutes, 95% of the time First Call Resolution Rate (apps and infrastructure • 85% (for WTD related tickets) • 85% (for WTD related tickets) Service Desk Tool Availability • 99.5% uptime • 99.5% uptime Max. Time to Restore for Service Desk Tool • 4 hours • 4 hours * FGWD – Federal Government Working Days 33
  • 34. Justice Canada Pilot - Level 2 Deskside Support Targeted Service Levels (NCR) Attribute Standard Support Premium Support Hours of Operation • 7am – 6pm (EST) on FGWDs* • 24 hours on FGWDs* Response Time • 4 hours from ticket assignment, 95% of the time • 2 hours from ticket assignment, 95% of the time Maximum Time to Restore • 1 FGWD, 95% of the time • 4 hours, 95% of the time Maximum Time to Fulfill Service Request • 5 FGWDs* for Simple requests, 95% of the time • 20 FGWDs* for Complex requests, 95% of the time • 5 FGWDs* for Simple requests, 95% of the time • 20 FGWDs* for Complex requests, 95% of the time * FGWD – Federal Government Working Days 34
  • 35. Justice Canada Pilot - Summary of Questions for Industry Feedback 1. Based on the information provided on the Justice Canada pilot(s), please comment on the proposed scope and approach. 2. Do you have any comments or recommendations with respect to the approach for leveraging the Government-Furnished Equipment? 3. Given that Justice Canada end users are dispersed across the country, what strategies and options would vendors employ to ensure that these users receive consistent services? Can you share any lessons learned from previous experiences in delivering WTD support services to large geographically-distributed organizations? 4. Given the scope of the Justice Canada Pilot, do you have any suggestions on the pricing and evaluation strategy that should applied to the Pilot RFP? 5. Do you have standard catalogue offerings for WTD services? If so, what are they and what are the corresponding pricing models? 6. Are there emerging technologies or service enhancements for Workplace Technology Devices that SSC should consider testing through this pilot or another one? 7. How could the contract(s) be structured to allow new and emerging technologies to be leveraged while ensuring value to the crown over a long term contract? 8. What level of current state detail would be required to provide an accurate proposal and proceed with implementation of a pilot project? 9. What would you identify as the key challenges or barriers in providing WTD services that meet business needs (e.g. mobility, scalability, adaptability to new technology)? 10. Other comments? 35
  • 36. Next Steps • Industry representatives are invited to submit written responses to the questions included in the notice and discussed today by November 20th 2013. • If clarification on any of the responses is required, follow-up meetings may be scheduled by SSC if necessary. • Additional industry engagement activities will be scheduled in the future in order to discuss broader considerations. • A draft of the Justice Canada RFP will be released for industry feedback. • The final Justice Canada RFP is expected to be released early March, 2014. 36
  • 38. Justice Canada Pilot Procurement Approach Michelle Beaton Supply Team Leader Procurement and Vendor Relationships, Shared Services Canada 38
  • 39. Contents • Procurement considerations for the WTD initiative • Overview of SSC Procurement Processes • Engagement Activities Schedule • Procurement Approach and Schedule for the Justice Canada Pilot 39
  • 40. Procurement Considerations for the WTD Initiative • A National Security Exception (NSE) may apply. • WTD will leverage the PWGSC Fairness Monitor Program to oversee all related procurement activities. Please go to http://www.tpsgc-pwgsc.gc.ca/se-fm/index-eng.html for more information. • It is anticipated that for all WTD pilot procurements, the vendor will be required to hold a valid Secret Level Security clearance. 40
  • 41. SSC Procurement Processes Traditional Request For Proposal* Request for Proposal (RFP) Anticipated for WTD Pilots Award Contract Implementation Two-Phase Approach (Supply Chain Integrity (SCI) Invitation to Qualify)* Supply Chain Integrity (SCI) Invitation to Qualify (ITQ) - with draft RFP Request for Proposal (RFP) Implementation Award Contract Three-Phase Approach (Collaborative Procurement Solutions – CPS)* Invitation to Qualify (ITQ) Review and Refine Requirements (RRR) Request for Proposal (RFP) Award Contract Implementation * Engagement activities such as Industry Days, Letters of Interest, Requests for Information, etc. may precede the formal tendering process 41
  • 42. Justice Canada Pilot – Industry Engagement Activities Schedule Justice Canada Pilot Industry Engagement Activities Industry Engagement Presentation 8 Nov 2013 Review Written Submissions Received by 20 Nov 2013 Written Submission Clarification Meetings Any time after the written submission in question has been received and reviewed. Written Submissions 42
  • 43. Justice Canada Pilot - Anticipated Procurement Approach and Schedule Two-Phase Approach (Supply Chain Integrity (SCI) Invitation to Qualify (ITQ)) SCI Invitation to Qualify (ITQ) Includes draft RFP Early Jan – End Jan 2014 Request for Proposal (RFP) Early Mar – End Mar 2014 Award Contract Jun 2014 Implementation Summer 2014 43
  • 45. Supply Chain Integrity (SCI) Workplace Technology Devices Initiative Industry Day November 8, 2013 Raj Thuppal, Director General, Cyber and IT Security Transformation Program 45
  • 46. SCI in Competitive Procurements Optional Request for Information (RFI) and/or Industry Engagement Day and required Invitation to Qualify (ITQ) posted on GETS, and optional Review and Refine Requirements (RRR) sent to qualified respondents SCI determination & pre-requisite National Security Exception Respondents provide list of Information and Communications Technology (ICT) equipment, software and services Rejected respondent has 10 calendar days to resubmit revised equipment list 1st Rejection SCI Authority reviews ICT list in consultation with Security Partners Decision by SCI Authority No 2nd Yes SSC issues RFP to Qualified Respondents Receive Approval Letter for pre-qualification Debrief session with respondent Rejection Respondent does not qualify 46
  • 47. Required Information from the Respondents • Once the SOW is finalized, GC will request that the respondents provide their Supply Chain Security Information. More specifically, when it applies, the GC will be requesting the following detailed information: 1. 2. 3. List of equipment used to deliver the service (vendor, manufacturer, model number, software load version). List of subcontractors (names of companies and the location from where these services are delivered). All of the above applies for sub-contractors and partners (subcontractors and their own sub-contractors). This should include all companies who will be sub-contracted to provide equipment or services as part of the Workplace Technology Devices Initiative. 47
  • 48. On-going Supply Chain Integrity Auditing Rejected supplier has to resubmit revised ICT list On-going SCI auditing from the moment the contract has been awarded until it ends. Supplier provides revised ICT list SCI Authority reviews ICT list in consultation with Security Partners Decision by SCI Authority No Debrief session with supplier Yes Supplier receives Amendment Approval Letter SCI Authority monitors threats and audits results in consultation with Security Partners Threats? Yes Debrief session with supplier Internal threat evaluation can lead to the questionning/exclusion of specific equipment/services 48
  • 49. Cyber & Supply Chain Threats to the GC Services partagés Canada – Workplace Technology Devices (WTD) Initiative • November 8, 2013 • Carey Frey, Director Strategic Relationships Office Communications Security Establishment Canada 49 4 9 49
  • 50. UNCLASSIFIED CSEC: What We Do • CSEC: Canada’s national cryptologic agency • Our Mandate    Foreign Signals Intelligence IT Security Support to Lawful Access • ‘B’ Mandate  To provide advice, guidance and services to help ensure the protection of electronic information and of information infrastructures of importance to the Government of 5 Canada 50 50 0
  • 51. UNCLASSIFIED CSEC: IT Security Program • We help prevent, detect and defend against IT security threats and vulnerabilities • CSEC provides unique technical expertise, capabilities and classified information that we use to complement commercial security technologies available to IT security practitioners • We use our own methods and operations to detect and defend against threats that are not in the public domain 51 5 1 51
  • 52. UNCLASSIFIED Effects of Market Forces on Technology • Market forces favour commercial and personal technologies over requirements for security features • Our society is almost totally dependent on software and hardware commercial technology providers from global markets • New products and new versions of products are rapidly produced • No regulatory framework exists for hardware/software safety and security • Traditional government policies and processes impose security requirements after products and systems have been developed • Few incentives for commercial technology developers to invest in security 52 5 2 52
  • 53. UNCLASSIFIED Technology Vulnerabilities • “People write software sloppily. Nobody checks it for mistakes before it gets sold”  Peiter Zatko (Mudge), WhiteHouse Cyber-Security Summit (2000) • Unintentional vulnerabilities or weaknesses  Design flaws  Implementation errors • Cyber Threat – a threat actor, using the Internet, takes advantage of a known vulnerability in a product for the purpose of exploiting a network and the information the network carries • Intentional vulnerabilities or weaknesses  Predetermined deliverables can be implanted in a product with or without knowledge of company. • Supply Chain Threat – a product can be easily tampered with in the supply chain to later facilitate a cyber-intrusion against that product in order to exploit a network and the information the network carries 53 5 3 53
  • 54. UNCLASSIFIED The Evolving Cyber-Threat • Today, malicious cyber activities are directed against Canada and our closest allies on a daily basis • Threat actors range in sophistication from malfeasant hackers to organized crime groups, to terrorists to nation states • Canadians trust the GC to defend Canada’s cyber sovereignty and protect and advance our national security and economic interests 54 5 4 54
  • 55. UNCLASSIFIED An Issue of National Security • Cyber security risks from end user devices       Easily compromised by cyber threat actors Vulnerable to vast range of social engineering techniques & variants of malicious software Difficult to remediate if exploitation becomes persistent eg: through BIOS Subjects other devices on the same network & infrastructure to easier compromise Must be frequently patched to remain secure Often connected in untrusted environments and introduce vulnerabilities into secure enterprises • Risks from the supply chain  Hardware and software are delivered with pre-positioned capabilities to facilitate cyber exploitation  Managed services present increased risks of social engineering, theft of credentials and access to GC information 55 5 5 55
  • 56. UNCLASSIFIED GC Procurements • CSEC is working in partnership with GC departments to eliminate or significantly reduce risks to the GC from cyber threats & global supply chain vulnerabilities • CSEC will provide follow-up briefings on supply chain risk mitigation to interested suppliers for GC consolidated initiatives  Companies must be willing to sign a CSEC non-disclosure agreement to receive this information • Various security requirements for cyber-protection, cyber-defence and supply chain risk mitigation may be stated and must be met in order to successfully bid on such initiatives  As the IT Security authority for the GC, CSEC will seek long-term partnerships with successful suppliers  CSEC will assist Shared Services Canada in conducting any supply chain pedigree analysis where required for proposed procurements • Examples of these requirements can be found on CSEC’s website under Technology Supply Chain Guidance 56 5 6 56