Number:  GoA.GCC-02
Creation Date:  2022-10-04
Category:  Security Management
Effective Date:  2022-10-04
Version:  2.0
Last Reviewed:  2024-01-17
Security Classification:  Protected A
Scheduled Review Date:  2025-01-17
Status:  Approved

Please note that information classified as Protected (per the Data and Information Security Classification standard) is only accessible to Government of Alberta Employees. External users are therefore not able to download this document. To request access, please contact us:

The Cybersecurity Management Control Policy defines the Cybersecurity Division’s information security management control objectives, aligns with the Information Security Management Directives (ISMD), and establishes a risk-based approach for cybersecurity operations. The Cybersecurity Division implements security controls and countermeasures that reduce the risk of a breach of confidentiality, protect data integrity, and ensure the resiliency of digital services.​​

Keywords: controls, countermeasures, risk assessment, incident response