Shared Services Canada: Standing Committee on Government Operations and Estimates—June 10, 2022
Document navigation for "Standing Committee on Government Operations and Estimates: June 10, 2022"
On this page
- Cyber security
- Return to worksite
- Outsourcing of information technology services
- Response to National Security and Intelligence Committee of Parliamentarians Report
- Information technology service management: BMC contract
- Shared Services Canada procurement of Cisco products
- Standing Committee on Public Accounts Report on Complex Information Technology Procurement
Cyber security
Key messages
- Shared Services Canada (SSC) works to keep networks safe, secure, and accessible for Canadians
- Cyber security is a shared responsibility between SSC, Communications Security Establishment (CSE), Treasury Board Secretariat (TBS) as well as its partners. SSC is an integral part of the cyber security tripartite
- SSC supports the effective design, delivery and management of priority information technology (IT) security initiatives affecting government systems and government-wide operations
- When a cybersecurity event occurs within its network infrastructure, SSC and its partners coordinate to determine root causes, limit impact and undertake recovery. This is also true for SSC-managed components in the cloud
- SSC continuously works to enhance the cyber security of Government of Canada digital assets by preparing for all types of cyber incidents and for responses to threats
Key messages on budget 2022:
- the National Cyber Security Strategy, announced in 2018, is working to keep Canadians safe from evolving cyber security threats that target Canadians, Canadian businesses, and our critical infrastructure
- as Canadians grow more dependent on digital systems, the potential consequences of cyber incidents continue to increase, and Canada needs to be ready
- that is why budget 2022 proposes to provide $875.2 million over 5 years, beginning in 2022 to 2023, and $238.2 million ongoing for additional measures to address the rapidly evolving cyber threat landscape
- this includes $178.7 million over 5 years allocated to SSC and CSE, starting in 2022 to 2023, and $39.5 million ongoing, to expand cyber security protection for small departments agencies and Crown corporations
Key messages on SSC’s responsibility versus that of CSE:
- although most of the security systems used to protect the Government of Canada’s IT infrastructure are designed and managed by SSC, the Cyber Centre also uses an array of its own complimentary solutions to supplement the SSC-managed security systems
- while SSC provides IT security infrastructure, the Cyber Centre monitors government systems and networks for malicious activities, as well as leads the government's operational response to cyber security events
Key data points
- Shared Services Canada is mandated to manage IT infrastructure services related to email, data centres, and telecommunications for 45 federal organizations, including SSC itself
- As per its 2020 to 2021 annual report, the Communications Security Establishment routinely blocks between 2 and 7 billion malicious actions every day
Background
Overview
The Government of Canada (GC) works continuously to enhance cyber security in Canada by preventing attacks through robust security measures, identifying cyber threats and vulnerabilities, and by preparing for and responding to all kinds of cyber incidents to better protect Canada and Canadians.
The GC has improved its enterprise capacity to detect, defend and respond to cyber threats. It has centralized Internet access points; launched an enterprise security architecture program; established the foundation of a Government Cyber Security Program and implemented a whole-of-government incident response plan.
Given the cross-cutting nature of cyber security, a number of other federal departments and agencies play a role in various aspects of cyber security including: TBS, CSE, Public Safety Canada (PS), the Royal Canadian Mounted Police (RCMP), the Canadian Security Intelligence Service (CSIS) and National Defence.
GC departments and agencies play an integral role in establishing governance to ensure the integrated management of service, information, data, IT, and cyber security within their departments.
Roles and responsibilities
GC departments and agencies have a responsibility to ensure cyber security within their organization.
TBS, SSC, and CSE are the primary stakeholders with responsibility for ensuring the government’s cyber security posture is effective and able to respond to evolving threats.
TBS provides strategic oversight of government cyber security event management to ensure effective coordination of major security events and support government-wide decision-making. The GC Cyber Security Event Plan provides an operational framework which outlines the stakeholders and actions required to ensure that cyber security events are addressed in a consistent, coordinated and timely fashion across the government. The chief Information officer for the GC, at TBS, sets information technology security policy along with other delegated powers.
SSC provides IT security infrastructure (procure, design, deploy and operate). In conjunction with TBS and CSE, SSC also provides security and privacy by design as part of the establishment of new services.
Although most of the security systems used to protect the Government are designed and managed by SSC, the Canadian Centre for Cyber Security (CCCS) also uses an array of its own complimentary solutions to supplement the SSC-managed security systems (for example, host-based sensor for monitoring and protection of GC endpoints).
CSE houses the CCCS which monitors government systems and networks for malicious activities and cyber-attacks, as well as leads the government's operational response to cyber security events. The CCCS works to protect and defend the country’s valuable cyber assets and works side-by-side with the private and public sectors, including critical infrastructure, to solve Canada’s most complex cyber issues.
Public Safety Canada leads national cyber security policy and strategy by, for example: coordinating the overall response to significant national cyber events through the Government Operations Centre working closely with TBS; and working with Canadian and international governments, associations, academia and industry to continually advance cyber security both domestically and internationally. Public Safety Canada is also lead on developing a new policy pertaining to how the GC supports non-government entities; the draft policy is currently called Government of Canada Coordination Policy for Cyber Security Incidents and Events Affecting Non-Government of Canada Cyber Systems. SSC’s role under that policy will need to be defined.
The RCMP is the primary investigative department on all cyber security incidents dealing with actual or suspected cybercrime of non-state origin on the GC infrastructure. They also lead the investigative response to suspected criminal national security cyber incidents and assist domestic and international partners with advice and guidance on cybercrime threats.
CSIS is the primary department responsible for investigating threats against information systems and critical infrastructure posed by foreign state actors and terrorists.
National Defence/Canadian Armed Forces is the primary department responsible for addressing cyber threats, vulnerabilities or security incidents against or on military systems.
Each department has responsibilities under the TBS Policy on Service and Digital for specific aspects of cyber security, such as:
- integrating cyber security in overall governance of service, information, data and information technology
- designating an official for cyber security who is responsible for departmental cyber security management function
- including cyber security in departmental planning in alignment with enterprise-wide plan approved by the chief information officer of Canada
Return to worksite
Key messages
- Shared Services Canada continues to work with its partners to implement the technology and network upgrades necessary to enable effective communication and collaborative tools for government employees
- To enable virtual work, SSC quickly implemented major upgrades to the enterprise network, government-wide internet and network security, and enabled the deployment, across the enterprise, of the digital communication and collaboration platform enabled by Microsoft 365
- Now, SSC continues to make significant upgrades to networks and boardrooms to enable employees to collaborate from worksites with their remote colleagues as well as support bandwidth-intensive videoconferencing tools
- This will support the return to the worksite and enable a hybrid workforce, as well as prepare the foundational infrastructure and platforms that will modernize program and service delivery to Canadians
- Videoconferencing, mostly via Microsoft (MS teams), has become the defacto digital communication and collaboration channel, given the work from home environment. This service offering was accelerated and implemented across the Government of Canada, in response to the pandemic
Key data points
- There are in excess of 3,500 buildings connected to the Government of Canada network
- Prior to the pandemic, there were an average of 20,000 simultaneous remote connections. During the pandemic, we have seen daily average exceeding 240,000 simultaneous remote connections during the first year. Based on the last 6 months, the average remote connections have now stabilized at around 230,000
Background
Videoconferencing technologies use much more network bandwidth. As a result, maintaining the same user experience for a home user is not currently supported from within GC buildings given infrastructure limitations.
There are in excess of 3,500 buildings connected to the GC network. Therefore, SSC is prioritizing, with partner departments, the most critical sites requiring digital communication and collaboration tools to support Canadians and government operations. This will allow the GC to increase its efficiency and effectiveness in providing these tools to those employees and worksites that will continue to leverage these modern tools going forward.
Improvements to the overall GC network will ensure a smooth return to the worksite as the new tools that were implemented during the pandemic (mainly MS teams) require more bandwidth and upgrades to infrastructure (through budget 2021) in order to ensure a positive user experience in the GC buildings.
The work required to improve user experience for a hybrid workforce relies on SSC and partners to ensure information technology performance through proactive testing and analysis of operations, devices and tools. SSC continues to work with partners to ensure their business requirements are addressed.
Outsourcing of information technology services
Key messages
- Shared Services Canada works to ensure the operation of secure, modern, and reliable government information technology infrastructure and systems
- SSC remains focused on providing its partners with the most secure and cost-effective solutions to meet the needs and expectations of a digital government
- By accessing some technologies through contracts, SSC can provide products and services which are cutting edge—aligned to global best practices and offering extensive support and functionality to users
- Examples of this include the government’s approach to cloud services which represents a fundamental shift in the way the Government of Canada delivers and consumes information management (IM)/information technology services. Private sector cloud-based service offerings allow for a secure, enterprise-wide platform that enables a workforce to work together remotely, from anywhere, consuming only the IT services they need when they need it
- Cloud services increase the responsiveness, flexibility, and value for money of the applications used to deliver programs and services to Canadians
- In certain situations, the department may not have the resources or skills to offer some services
- Examples of services that SSC would not be able to provide without the private sector include:
- mobile devices service, which offers 3 types of cellular service plans and a broad selection of mobile devices
- the Government of Canada wide area network, which is a fully managed network service that interconnects partner or client locations across metropolitan, regional, national or international boundaries
Key data points
Not applicable.
Background
On January 17, 2022, a report appeared in the Globe and Mail stating that the federal government spending on outsourcing contracts in the fiscal year 2020 to 2021 increased by 40% when compared to fiscal year 2015 to 2016. This came from information publicly available in the Public Accounts of Canada, tabled in the House of Commons on December 14, 2021.
Though these recent media reports make no mention of Shared Services Canada, there has been past criticism of government departments, including SSC, in regard to the outsourcing of IT services.
Examples of information technology service contracts
In 2019, Shared Services Canada in consultation with Treasury Board of Canada Secretariat, the Communications Security Establishment of Canada (CSEC) established the Microsoft Enterprise Agreement for the Government of Canada as the basis for replacing a multi-year contract for a fully vendor-managed email service. This enabled the transition to a GC-managed email service hosted on cloud components and allowed the GC to close-out the vendor-managed service in December 2021.
In addition, the Microsoft Enterprise Agreement provided a digital collaboration toolset, including Microsoft (MS) teams, delivered via a cloud provider (Software-as-a-Service), which was fundamental to enabling the GC to pivot to a mobile workforce throughout the pandemic and continue to provide programs and services to Canadians.
The next generation human resources and pay (NextGen HR and Pay) initiative is an example of where the GC has strategically chosen to outsource. This initiative is part of the government’s modernization effort, where legacy IT systems are being replaced with modern digital solutions. For the NextGen HR and Pay solution, the GC has chosen to explore a Software-as-a-Service (SaaS) model, that is configured to the GC environment, but not customized through fundamental changes to the software. SaaS tools come with a standard configuration aligned with international best practices (including for managing human resources (HR) and pay).
Therefore, by pursuing a commercially available SaaS solution, the GC is adopting a world-leading solution. In the case of NextGen HR and Pay, by choosing to outsource, the GC is getting access to proven product with a solid international reputation that will align its approach to HR and pay with global best practices. It also means that the software is rigorously tested and that users have access to extensive support.
Response to National Security and Intelligence Committee of Parliamentarians Report
Key messages
- Shared Services Canada is committed to protecting the confidentiality, integrity and availability of digital services to Canadians, including data and related technologies by providing reliable and secure information technology infrastructure and services to its partner organizations
- While there are clients who are mandated to come to SSC for services under the department’s accountabilities, not all small departments and agencies are currently mandated to use SSC’s services
- SSC is working closely with the Treasury Board Secretariat and the Communications Security Establishment to evaluate the current security posture of small departments and agencies to understand their requirements and explore how enterprise internet adoption could reduce the exposure to government networks
Key messages on small departments and agencies:
- the report recommended the extension of SSC security services to entities that currently do not fall under the SSC umbrella, such as a number of small departments and agencies
- the report’s recommendations are in line with work SSC and government cybersecurity partners had already initiated, and further validate the work to date
- budget 2022 announced that SSC and CSE would be allocated $178.7 million over 5 years, starting in 2022 to 2023, and $39.5 million ongoing to expand cyber security protection for small departments agencies and Crown corporations
- SSC will accelerate its work with small departments and agencies to provide them with the most secure and cost-effective solutions to meet the needs and expectations of a digital government
Key messages on SSCs role on cybersecurity:
- Shared Services Canada works diligently to keep networks safe, secure, and accessible for Canadians
- cyber security is a shared responsibility between SSC, CSE and TBS. SSC is an integral part of the cyber security tripartite
- SSC supports the effective design, delivery and management of priority IT security initiatives affecting government systems and government-wide operations
- when a cybersecurity event occurs within its network infrastructure, SSC and its partners coordinate to determine root causes, limit impact and undertake recovery. This is also true for SSC-managed components in the cloud
- SSC continuously works to enhance the cyber security of Government of Canada digital assets by preparing for all types of cyber incidents and for responses to threats
Key data points
Not applicable.
Background
The National Security and Intelligence Committee of Parliamentarians (NSICOP) was established under the National Security and Intelligence Committee of Parliamentarians Act, which received royal assent in June 2017. It is not a parliamentary committee, but rather a committee of parliamentarians, composed of both members of Parliament and senators. All members hold top secret security clearances and are permanently bound to secrecy under the Security of Information Act.
In July 2020, the Honorable David McGuinty, Chair of the NSICOP, wrote to the president of the Treasury Board Secretariat to advise that the committee will review the Government of Canada’s framework and activities to defend its systems and networks from cyberattacks.
NSICOP completed its review of the Government of Canada’s activities to defend its systems and networks from cyberattack. This included reviewing the:
- federal framework for cyber defence
- activities which constitute cyber defence
- authorities and governance structures under which they are conducted
In the report, tabled in the House of Commons on February 14, 2021, recommendation 2 of annex A recommended the leveraging of SSC managed enterprise internet services by all small departments and agencies (SDAs), and read as follows:
“To the greatest extent possible, the government will extend advanced cyber defence services, notably enterprise internet service of Shared Services Canada and the cyber defence sensors of the Communications Security Establishment, to all federal organizations.”
Five SDAs were chosen to participate in pilots aimed at elevating security protection and visibility. The Office of the Chief Information Officer at the Treasury Board Secretariat has continued to investigate measures required to apply those same cyber and IT security policies and directives to all federal entities, which are currently not under Treasury Board Secretariat’s purview.
TBS, SSC and CSE continue to work to ensure that cyber defence is applied equally across departments and agencies to the greatest extent possible, including alignment between the scope of the Policy on Government Security and the Policy on Service and Digital.
Information technology service management: BMC contract
Key messages
- The security of government assets and information is a top priority for the Government of Canada
- Shared Services Canada is investing in technology that supports a whole-of-government or “enterprise” approach by enabling organizations to shift toward the use of common information technology systems. This contract provides for a single, modern IT service management (ITSM) tool available for use across the Government of Canada
- The ITSM tool will allow SSC to manage the end-to-end delivery of IT services to clients. It includes the processes and activities needed to deliver and support IT services
- This tool is a commercial application to manage IT service request, such as ordering a mobile phone, incidents, and changes such as system upgrades, within SSC and between SSC and client departments
- This contract, which was awarded through an open and fair competitive bidding process, included a complete security assessment by SSC on an exceptional basis to enable contractors to perform unclassified work outside of Canada until May 31, 2022 while COVID-19 related travel restrictions are in place
- The total initial contract value of $32.4 million was published on buyandsell.gc.ca, and multiple proactive disclosure entries have since been made for further contract amendments
- The original request for proposal (RFP) was structured to be scalable with amendments issued over time as departments transition to the tool and was part of the competitive procurement process. As amendments are exercised, they will be proactively disclosed
Key messages on security:
- best practices on protecting information were shared with the contractors, such as but not limited to the use of government furnished laptops, keeping the equipment secured and out of sight when not in use and ensuring all electronic information is encrypted
- contractors working from outside Canada were limited to the development environment without access to production data
- safeguards were also put in place to ensure that non-authorized non-Canadians did not have access to the information
Key messages on disclosure:
- SSC is committed to following Treasury Board guidelines regarding proactive disclosure of contracts and amendments over $10,000, which must occur 30 days after the first 3 financial quarters and 60 days after the final financial quarter
- an amendment for $20 million was disclosed late due to technical issues, however it has since been posted. It was determined that the disclosure did not occur as planned due to an anomaly in the data transfer between SSC and the Treasury Board Secretariat open government system. Discussions have since taken place with TBS to discuss findings and ensure that this technical issue will be fixed in order to avoid similar situations in the future
- additional proactive disclosure entries will occur in the future, as additional amendments are made to the contract
Key messages on ITSM:
- SSC has also consolidated existing licences (and their maintenance components) from other departments into a single enterprise licence available for use, free of charge, by all government departments
- additionally, the contract can also be accessed by departments in order to obtain services and support for meeting their own individual requirements to onboard to the tool
Key messages on outsourcing:
- SSC operates and supports the largest IT network in the country, while also experiencing exponential growth in demand for its services
- SSC contracts the development of IT infrastructure systems or buys commercially available technologies to ensure departments can provide digital services to Canadians at the speed and scale needed
- doing so allows SSC to leverage the capacity and nimbleness of the private sector and rapidly adopt innovative solutions at lower costs to Canadians
Background
On January 24, 2022, Shared Services Canada replied to a media query regarding the procurement process for an information technology service management tool solution, following information received through an access to information request. BMC Software Canada Inc. was the winning supplier for this procurement.
On March 14, 2022, the Globe and Mail published a story on the contract raising issues with the proactive disclosure of the contract, that it went to an American company, security rules for working in the United States, and general issues regarding outsourcing.
SSC invests in technology that supports a whole-of-government or “enterprise” approach by enabling organizations to shift toward the use of common IT systems. SSC’s contract with BMC reflects this approach to IT transformation, in that it provides for a single, modern ITSM tool available for use across the GC.
Information technology service management is, in part, the practice of managing IT delivery and operations for an organization’s customers. At SSC, the ITSM solution is being configured to manage service requests, changes and incidents for each of SSC’s services. The implementation of the solution is improving SSC’s ability to provide integrated quality services to partner departments.
On February 4, 2022, this contract was alluded to in the House of Commons by Mr. Kelly McAuley, member of Parliament (MP), focusing on the fact the work was occurring outside Canada and the government’s overall posture on cyber security.
A complete security assessment was undertaken by SSC on an exceptional basis to enable contractors to perform unclassified work outside of Canada until May 31, 2022 while COVID-19 related travel restrictions are in place for non-essential travellers. The security risk was carefully assessed, and robust mitigation measures were put in place to protect government assets and information. Safeguards were also put in place to ensure that non-authorized non-Canadians didn’t have access to certain information.
An amendment for an additional $20 million was proactively disclosed late due to technical issues, however it has since been posted. Technical issues have been addressed by adding manual processes to avoid similar situations in the future.
The initial contract and all amendments up to December 2021 have been proactively disclosed, as of January 24, 2022. Any amendments made between January to March 2022 will be disclosed by May 30, 2022 on the open government site, in line with the guidelines on proactive disclosure.
Shared Services Canada procurement of Cisco products
Key messages
- Shared Services Canada was created in 2011 to provide integrated and reliable digital solutions to public servants for the delivery of government services to Canadians
- A significant percentage of the networking infrastructure SSC inherited in 2011 came from one vendor: Cisco. To maintain existing infrastructure, it is essential to acquire equipment that is compatible with what we already have. This ensures continued services to federal organizations who provide important services to Canadians
- SSC has increased diversification in its procurement of network components and made great strides to engage small and medium enterprises. To reduce its reliance on any one vendor, SSC will continue to maximize its use of competitive processes to open up the competition to a multitude of vendors, acquire equivalent equipment and direct original equipment manufacturer purchases on a case-by-case basis
- In fiscal year 2021 to 2022, SSC witnessed a 38% decrease in procurement of Cisco equipment compared to the previous fiscal year
- As we move forward with network modernization, SSC is moving to standards-based generic technologies where possible, which offer compatibility, and will continue to seek competitive solutions from industry leaders
Key messages on sole sourcing:
- occasionally it is necessary for SSC to issue a non-competitive contract where equipment must be compatible with existing information technology infrastructure, but such contracts are avoided wherever possible
Key data points
- In fiscal year 2020 to 2021, 73% of contracts funded and awarded (volume), representing 1,796 contracts, by SSC went to small and medium enterprises
- Amount spent on Cisco products has decreased for the past 3 fiscal years:
- $171.4 million in 2019 to 2020
- $160 million in 2020 to 2021
- $98.5 million in 2021 to 2022
- In fiscal year 2021 to 2022, SSC observed a substantial growth in contracts awarded to other original equipment manufacturers, compared to the previous fiscal year. Notable examples include:
- Extreme Networks: 100% (from $1.3 million to $2.7 million)
- Fortinet: 178.9% (from $3.8 million to $10.7 million)
- Juniper: 60% (from $4.5 million to $7.2 million)
Background
On February 15, 2021, Shared Services Canada published the Network Modernization Way Forward document on Canada.ca to communicate our strategy and gather feedback from external parties. Within, SSC stated that we would balance open and competitive procurements to standardize and simplify the Government of Canada network which reduce the risk associated with maintaining, updating and building on overly complex systems.
Procurement activities undertaken where Cisco products were acquired are consistent with that strategy. SSC continues to limit tenders for Cisco products in specific instances, like growing the footprint in Enterprise Data Centres (EDC) where a common network fabric is maintained. However, open and competitive procurements are also done for many networking categories including local area networks (LAN) and Wide Area Networks (WAN).
Some open and competitive procurements are awarded to resellers who propose Cisco solutions, while others are not.
Looking forward, the Network and Security Services Branch (NSSB) plans to openly compete requirements from the following categories:
- LAN
- enterprise wireless (Wi-Fi)
- WAN provider and provider edge routing
- data centre networks enclaves
Additionally, SSC established the Network Infrastructure Requirements Review Committee (NIRRC) to improve oversight of all directed procurements in February 2021. This committee reviews all brand-specific requirements over $1 million to ensure alignment with SSC 3.0, departmental priorities and the network modernization way forward, and includes independent third-party consultation. Beginning April 1, 2022, NIRRC was succeeded by the Information Technology Infrastructure Review Board (ITIRB) with an expanded scope that includes a technical review of requirements over $1 million for 2 branches, Network and Security Services and Data Centre Services.
Standing Committee on Public Accounts Report on Complex Information Technology Procurement
Key messages
- The auditor general’s report concluded that Shared Services Canada, Public Services and Procurement Canada (PSPC), and the Treasury Board Secretariat have “made good progress toward adopting agile procurement practices for large information technology systems”
- The government thanks the auditor general and the Public Accounts Committee members for their work on this issue
- In alignment with the report, the government agrees and accepts all recommendations, and is continuing work to improve its practices associated with complex IT procurement
- To date notable progress has been achieved by each department to address the recommendations put forward in the report. Of the 8 recommendations, 3 have already been completed
- Specifically, the government is working to improve its:
- agile complex IT procurement
- governance mechanisms
- use of data analytics to identify procurement integrity issues
- tracking of procurement fairness issues
- Through collective work from Shared Services Canada, Public Services and Procurement Canada and the Treasury Board of Canada Secretariat, the improvements in these areas will better support the government to stay relevant throughout the digital evolution and to prepare for changes in departmental priorities and operations
Key data points
- 3 have already been completed:
- recommendation 3: The next generation human resources and pay initiative was officially transferred from TBS to SSC on April 1, 2020. TBS remains involved as policy owner for people management, and in the governance structure and design of the future of this system. A governance framework for the initiative was approved in May 2021 by both the SSC president and the chief human resources officer
- recommendation 4: SSC has a departmental Project Management Framework, Procurement Governance Framework, and the Workplace Communication Services Project Governance Framework in place. SSC will continue to leverage them to ensure ongoing Department of National Defence engagement and effective oversight for the lifecycle of the project including the contract
- recommendation 8: SSC has updated its internal information management tools to ensure they reflect the appropriate fairness requirements for agile complex IT procurements, and re-introduced them to all internal procurement officers between August and December 2021. SSC also has in place a Data and Business Analytics Council, an internal governance committee that provides data management and business analytics expertise in its cross-branch oversight and coordination
- The government commits to providing final progress reports to Standing Committee on Public Accounts (PACP) by the end of June 2023, rather than the prescribed schedule, with officials available at any time should additional information be required. This will allow a more substantive response and fully address any outstanding deliverables associated with the committee’s recommendations
Background
On February 25, 2021, the 2021 reports of the auditor general of Canada (AG) were tabled in the House of Commons.
A performance audit was conducted to determine whether specific federal departments responsible for procuring 3 major IT initiatives were on track to support the achievement of business outcomes and to uphold the government’s commitment to fairness, openness, and transparency in procurement.
Following this, the House of Commons Standing Committee on Public Accounts studied the report and supported the AG’s findings—specifically the conclusion that although the Government of Canada’s management of complex IT procurements has improved and applied lessons learned, further improvement is necessary.
Deputy Heads from Shared Services Canada, the Treasury Board Secretariat, Public Services and Procurement Canada, and Employment and Social Development Canada appeared at PACP’s hearing on May 27, 2021, to discuss the AG’s report.
On June 21, 2021, the chair presented PACP’s 24th report, “Procuring Complex Information Technology Solutions” in the House of Commons, focusing on 3 departments:
- SSC
- TBS
- PSPC
As per Standing Order 109, PACP requested that the GC table a comprehensive government response to the report’s 8 recommendations.
As parliament was dissolved on August 15, 2021, no such response was tabled. At its meeting on February 3, 2022, PACP Committee members adopted a motion to re-adopt the same report, that the report be tabled in the house, which occurred on February 8, 2022, and once more requested a comprehensive government response.
This government response was tabled in the House of Commons on May 31, 2022.