This flow chart describes the governance model of the GC IT IMP of which identifies the senior management committees and officials who will be engaged when severity and trigger criteria are met.
From the bottom, the GC CIRT receives incident / threat information from various organizations (an affected department, PS, partners). The GC CIRT then provides the incident information to TBS and to CTEC if cyber in nature). The CTU will receive information from GC CIRT and/or GC CTEC. The GC CIRT will asses the information, if cyber in nature, the Cyber Response Unit (CRU) (consisting of CSIC, TBS, GC CTEC, PS CCIRC, DND/CF, RCMP and SSC) chaired by directors of CTEC, TBS CIOB SPCS and SSC.
If non cyber in nature, the information will be passed to the Management Team directly, bypassing the CRU. The management team consists of TBS- CIOB, CSEC – DG Cyber defence, DG investigative Agency(s), Others as required, DND/CF DGIMO, DoJ (PS Rep), PS DG NCSD, PS DG Comms and SSC DG, and chaired by PS DG Ops and TBS CIOB ED Security. From the Management team, there is a communications channel to the DG Comms WG consisting of PS DG Comms (Chair), TBS, PCO, Affected Department, Supporting Departments, SSC DG Comms). From the Management team, the reporting continues to the Federal Coordinating officer, the ADM level committees (ADM EMC + GC CIO, CIOC and ADM NS Ops + GC CIO), followed by the DM committee and the Cabinet Committee.