Shared Services Canada: Standing Committee on Government Operations and Estimates—November 24, 2022
Document navigation for "Standing Committee on Government Operations and Estimates: November 24, 2022"
On this page
Cyber security overview
Suggested response
- Shared Services Canada (SSC) works diligently to keep networks safe, appropriately secure, and accessible for Canadians
- SSC applies cyber security measures to identify and prevent malicious actors from gaining access to government networks by using firewalls, network scans, anti-virus, anti-malware, identification and authentication tools and services
- Cyber security is a shared responsibility between SSC, the Communications Security Establishment (CSE), Treasury Board Secretariat and partner organizations. SSC is an integral part of the cyber security tripartite
- When a cybersecurity event occurs, SSC and its partners coordinate to determine root causes, limit impact and undertake recovery
- SSC supports the effective design, delivery and management of priority information technology (IT) security initiatives
If pressed on SSC’s responsibility vs. that of CSE:
- although most security systems used to protect the government’s IT infrastructure are designed and managed by SSC, CSE also uses an array of its own complimentary solutions to supplement the SSC-managed security systems
- while SSC provides IT security infrastructure, CSE monitors government systems and networks for malicious activities and cyber-attacks and leads the government's operational response to cyber security events
If pressed on any particular cyber event (Exchange Vulnerability, Log4j, Print Nightmare, Global Affairs Canada (GAC) incident, National Research Council (NRC) incident, etc.):
- SSC has people, technology and processes in place to safeguard systems, and works collaboratively with Treasury Board of Canada Secretariat (TBS), CSE and federal departments to detect and respond to cyber threats
- when a cyber security event occurs, SSC and other federal departments coordinate to determine root causes, limit impact and undertake recovery
- the risk of cyberattacks is persistent and requires constant vigilance
Key data points
- Between Budget 2022 and the 2022 Fall Economic Statement, $515.8 million over 6 years, with $104.6 million in ongoing funding has been announced for SSC to address the rapidly evolving cyber threat landscape. These funds were identified within the documents for SSC, CSE and TBS and the breakdown by initiative is a follows:
- Budget 2022
- $178.7 million over 5 years for SSC and CSE, beginning 2022 to 2023, and $39.5 million ongoing, to expand cyber security protection for small departments agencies
- Fall Economic Statement 2022
- $205.1 million over 5 years, starting in 2023 to 2024, with $15.7 million in remaining amortization and $40.9 million ongoing to support SSC’s security information and event management system. This funding is restricted solely to support this system and any surplus funds are to return to the fiscal framework
- $15.7 million over 2 years, starting in 2022 to 2023, to support cloud security at SSC
- $167.8 million over 6 years, starting in 2022 to 2023, with $37.1 million ongoing, including 102 incremental full-time equivalent (FTEs), for cyber security modernization. These resources should be used in part to modernize the Government of Canada's approach to cyber security
- $16.7 million over 6 years, starting in 2022 to 2023, with $2.8 million ongoing to support the TBS’s associated efforts to reinforce government cyber security
- Budget 2022
Background
Overview
The Government of Canada works continuously to enhance cyber security in Canada by preventing attacks through robust security measures, identifying cyber threats and vulnerabilities, and by preparing for and responding to cyber incidents to better protect Canada and Canadians.
To that end, the government has:
- improved its enterprise capacity to detect, defend and respond to cyber threats
- centralized internet access points
- launched an enterprise security architecture program
- established the foundation of a Government Cyber Security Program
- implemented a whole-of-government incident response plan
Roles
A number of departments and agencies play a role in cyber security, including TBS, CSE, Public Safety Canada (PSC), Royal Canadian Mounted Police (RCMP), Canadian Security Intelligence Service (CSIS), and National Defence.
All departments and agencies have a responsibility to ensure cyber security within their organization. TBS, SSC, and CSE are the primary stakeholders with responsibility for ensuring the government’s cyber security posture is effective and able to respond to evolving threats.
TBS provides strategic oversight of government cyber security event management.
SSC provides IT security infrastructure (design, deploy and operate). In conjunction with TBS and CSE, SSC also provides security and privacy by design as part of the establishment of new services. The security of goods and services is evaluated during the procurement process by CSE and SSC.
CSE houses the Canadian Centre for Cyber Security (CCCS) which monitors systems and networks for malicious activities and cyberattacks and leads cyber event operational response.
PSC leads national cyber security policy and strategy.
The RCMP is the primary investigative department on all cyber security incidents dealing with actual or suspected cybercrime of non-state origin against Government of Canada (GC) infrastructure.
CSIS is responsible for investigating threats against information systems and critical infrastructure posed by foreign state actors and terrorists.
National Defence/Canadian Armed Forces is responsible for addressing cyber threats, vulnerabilities or security incidents against or on military systems.
Government of Canada readiness for return to worksite
Key messages
- In response to the rapid growth in virtual work, SSC increased government-wide network capacity and improved access to modern collaboration tools
- SSC is building on these improvements to support future ways of working for employees, including a return to the worksite, hybrid work and remote work
- With a focus on priority worksites, SSC continues to upgrade networks and modernize boardroom capabilities to better enable collaboration across locations
- SSC is working with other departments to address their unique needs, while ensuring that tools and technology are in place government-wide to support essential operations and to deliver services to Canadians
- SSC continues to support and enable the Government of Canada to adapt to constant technological advances
Key data points
- More than 3,500 buildings are connected to the Government of Canada network. It is not required, feasible or cost effective to upgrade all sites. Consequently, SSC is working with federal departments to prioritize sites most critical to Canadians and government operations
- SSC has established interoperability between Microsoft Teams and the existing videoconference infrastructure located in approximately 7,800 government boardrooms across the country
Background
Shared Services Canada has taken significant steps to address government-wide technology challenges related to COVID-19 work arrangements, focusing primarily on demands on the government’s network capacity and security, and the functionality of workplace collaboration tools.
Network modernization
SSC implemented major upgrades to the enterprise network in the summer and fall of 2020. More internet and security upgrades are underway.
More than 3,500 buildings are connected to the Government of Canada network. It is not required, feasible or cost effective to upgrade all sites. Consequently, SSC is working with federal departments to prioritize sites most critical to Canadians and government operations.
Collaboration tools
Videoconferencing, mostly through Microsoft Teams, has become the main communication channel for employees, given the ongoing requirements for collaboration from different locations.
SSC has established interoperability between Microsoft Teams and the existing videoconference infrastructure located in approximately 7,800 government boardrooms across the country. As GC employees return to worksites and adopt hybrid work solutions, SSC will continue to work with its partners to enable standardized meeting spaces and modern conferencing capabilities. Where appropriate, SSC will deploy certified Microsoft Teams Room (MTR) technologies to upgrade videoconferencing equipment and provide users across the GC with an enhanced user experience. These technologies require significant bandwidth. As employees return to worksites, the level of service they have come to expect is not consistently available in all Government of Canada buildings. SSC issued guidance in January 2022 on thresholds for Microsoft Teams bandwidth consumption to assist departments with managing their users’ experience. After working with Public Services and Procurement Canada (PSPC), SSC updated the guidance in August 2022 where departments could establish thresholds for those working on the GC network, while allowing remote workers to fully leverage their available bandwidth, thereby supporting a better user experience for all.
Working with partners
The work required to implement future worksite strategies is shared with other federal departments. SSC will continue to work with federal departments on their specific needs. Some departments may choose to send their employees back to worksites in advance of the upgraded infrastructure being put in place; however, the current videoconferencing infrastructure will support the interoperability requirements with Microsoft Teams. Each department will also engage in proactive testing and analysis for their respective operations.
Outsourcing information technology services
Key messages
- SSC works to ensure the operation of secure, modern, and reliable government IT infrastructure and systems
- SSC has established a robust project management process that involves assessing all potential options for successful delivery. During the development of the project, options are assessed with an emphasis on best practices, capacity, existing solutions and determining if the solution can be built and operated in-house, if it should include utilisation of commercial solutions, and if external expertise will be required to achieve the outcome
- By accessing some technologies through contracts, SSC can provide products and services which are cutting edge—aligned to global best practices and offering extensive support and functionality to users
- This is a practice used by SSC to access technologies and/or services that are best delivered by industry in order to provide secure and cost-effective solutions to meet the needs and expectations of a digital government
- SSC leverages large scale industry investments in other public sectors and private markets to obtain cost effective, secure and reliable off-the-shelf products and highly specialized solutions
- Examples of this include the government’s approach to cloud services, which represents a fundamental shift in the way it delivers and consumes information management/information technology (IM/IT) services. Using private sector cloud-based service offerings allows for a secure, enterprise-wide platform that enables a workforce to work together remotely, from anywhere, consuming only the IT services they need when they need it
If pressed on reasons for “outsourcing” technologies:
- as an example, it would be less cost effective to deliver and manage satellite services with in-house resources. Such a highly specialized domain where industry excels is better delivered by the private sector
- another example is the contract for the High-Power Computer for Environment and Climate Change Canada to generate environment and weather forecasts, advisories and warnings to protect the health, safety and economic well-being of Canadians. This is a highly specialized domain that would be less cost effective to deliver internally
If pressed on reasons for “outsourcing” work:
- SSC makes use of temporary professional services to support programs and projects that have defined time periods and requiring surge capacity for delivery
- SSC will use additional resources from industry, on an as-and-when-requested basis, to complement its current program and project staff to support the planning and execution of these programs and projects
Background
On January 17, 2022, a report appeared in the Globe and Mail stating that the federal government spending on outsourcing contracts in the fiscal year 2020 to 2021 increased by 40% when compared to fiscal year 2015 to 2016. This came from information publicly available in the Public Accounts of Canada, tabled in the House of Commons on December 14, 2021.
Though these recent media reports make no mention of Shared Services Canada, there has been past criticism of government departments, including SSC, in regard to the outsourcing of IT services.
In February 2022, the House of Commons Standing Committee on Government Operations and Estimates adopted a motion to conduct a study on the outsourcing of contracts in public services and procurement. The first meeting for this study occurred on October 3, 2022, at which officials from SSC, the Treasury Board Secretariat, and Public Services and Procurement Canada attended.
Response to National Security and Intelligence Committee of Parliamentarians Report
Key messages
- Shared Services Canada is committed to protecting the confidentiality, integrity and availability of digital services to Canadians, including data and related technologies by providing reliable and appropriately secured IT infrastructure and services to its partner organizations
- While there are clients who are mandated to come to SSC for services under the department’s accountabilities, not all government organizations are currently mandated to use SSC’s services
- SSC is working closely with the Treasury Board Secretariat and the Communications Security Establishment to evaluate the current security posture of these small departments and agencies to understand their requirements and explore how enterprise internet adoption could reduce the exposure of government networks to cyber threats
If pressed on small departments and agencies:
- the report recommended the extension of SSC security services to entities that currently do not fall under the SSC umbrella, such as a number of small departments and agencies
- the report’s recommendations are in line with work SSC and government cybersecurity partners had already initiated, and further validate the work to date
- SSC remains focused on providing federal government departments with the most secure and cost-effective solutions to meet the needs and expectations of a digital government
- Budget 2022 announced that SSC and CSE would be allocated $178.7 million over 5 years, starting in 2022 to 2023, and $39.5 million ongoing to expand cyber security protection for small departments and agencies, and Crown corporations
If pressed on Crown corporations:
- the report also recommended the extension of SSC security services to entities that currently do not fall under the SSC umbrella, such as Crown corporations
- SSC is working closely with TBS and CSE to evaluate the current security posture of Crown corporations to understand their requirements and explore how enterprise internet adoption could reduce the exposure of government networks to cyber threats
- while Crown corporations are not mandatory SSC clients, SSC will work with interested Crown corporations to leverage enterprise services it provides where it meets their needs, and to provide them with the most secure and cost-effective solutions to meet the expectations of a digital government
If pressed on SSCs role on cybersecurity:
- Shared Services Canada works diligently to keep networks safe, appropriately secured, and accessible for Canadians
- cyber security is a shared responsibility between SSC, CSE and TBS. SSC is an integral part of the cyber security tripartite
- SSC supports the effective design, delivery and management of priority IT security initiatives affecting government systems and government-wide operations
- when a cybersecurity event occurs within its network infrastructure, SSC and its partners coordinate to determine root causes, limit impact and undertake recovery. This is also true for SSC-managed components in the cloud
- SSC continuously works to enhance the cyber security of Government of Canada digital assets by preparing for all types of cyber incidents and for responses to threats
Background
The National Security and Intelligence Committee of Parliamentarians (NSICOP) was established under the National Security and Intelligence Committee of Parliamentarians Act, which received royal assent in June 2017. It is not a parliamentary committee, but rather a committee of parliamentarians, composed of both members of Parliament and senators. All members hold top secret security clearances and are permanently bound to secrecy under the Security of Information Act.
In July 2020, the Honourable David McGuinty, Chair of the NSICOP, wrote to the president of the Treasury Board Secretariat to advise that the committee will review the Government of Canada’s framework and activities to defend its systems and networks from cyberattacks.
NSICOP completed its review of the Government of Canada’s activities to defend its systems and networks from cyberattack. This included reviewing the:
- federal framework for cyber defence
- activities which constitute cyber defence
- authorities and governance structures under which they are conducted
In the report, tabled in the House of Commons on February 14, 2021, recommendation 2 of annex A recommended the leveraging of SSC managed enterprise internet services by all federal organizations, and read as follows:
To the greatest extent possible, the government will extend advanced cyber defence services, notably Enterprise Internet Service of Shared Services Canada and the cyber defence sensors of the Communications Security Establishment, to all federal organizations.
Responses to the National Security and Intelligence Committee of Parliamentarians report on cyber security
The GC Cyber Security Tripartite (SSC, CSE, and TBS) continue investigating options for improving the overall cyber defence posture of all federal organizations. The Budget 2022 allocation provides support to SSC and CSE to extend these advanced services to small departments and agencies, and this work has already begun. These services, when delivered together by SSC and CSE, improve the overall security posture of an entity by bringing them within the GC perimeter, standardizing key operational tools, and by providing monitoring of network traffic for potential threats or vulnerabilities. SSC may provide these services to Crown corporations that seek them; however, they will continue to be cost-recovered unless funding is identified.
The Office of the Chief Information Officer at the Treasury Board Secretariat continues to investigate measures required to extend cyber and IT security policies and directives to all federal entities not currently under Treasury Board Secretariat’s purview.
TBS, SSC and CSE continue to work to ensure that cyber defence is applied equally across departments and agencies to the greatest extent possible, including alignment between the scope of the Policy on Government Security and the Policy on Service and Digital.
Information technology service management
Key messages
- SSC has a contract in place with BMC to provide for a single, modern IT service management (ITSM) tool available for use across the Government of Canada and to enable organizations to shift toward the use of a common IT system
- SSC contracts with vendors to support the development of IT infrastructure systems and to access commercially available technologies, ensuring departments can provide digital services to Canadians at the speed and scale needed. Doing so allows SSC to leverage the capacity and nimbleness of the private sector and rapidly adopt innovative solutions at lower costs to Canadians
- The ITSM tool will allow SSC to manage the end-to-end delivery of IT services to clients and supports a whole-of-government management of the processes and activities to deliver IT services
- This tool is a commercial application to manage IT service requests, such as ordering a mobile phone, and managing incidents and changes, such as system upgrades, within SSC as well as between SSC and client departments
- The contract also offers client departments access to professional services, who support departments by working in tandem with public servants to configure the solution that works best for them, and ensures that departments’ needs are met
If pressed on security:
- best practices on protecting information were shared with the contractors, such as but not limited to the use of government furnished laptops, keeping the equipment secured and out of sight when not in use and ensuring all electronic information is encrypted
- contractors working from outside Canada were limited to the development environment without access to production data
If pressed on disclosure:
- SSC is committed to following Treasury Board guidelines regarding proactive disclosure of contracts and amendments over $10K, which must occur 30 days after the first 3 financial quarters and 60 days after the final financial quarter
- an amendment for $20M was disclosed late due to technical issues, however it has since been posted. It was determined that the disclosure did not occur as planned due to an anomaly in the data transfer between SSC and the TBS open government system. Discussions have since taken place with TBS to ensure that this technical issue will be fixed to avoid similar situations in the future
- additional proactive disclosure entries will occur in the future, as additional amendments are made to the contract
Background
On January 24, 2022, Shared Services Canada replied to a media query regarding the procurement process for an information technology service management tool solution, following information received through an access to information request. BMC Software Canada Inc. was the winning supplier for this procurement.
On March 14, 2022, the Globe and Mail published a story on the contract raising issues with the proactive disclosure of the contract, that it went to an American company, security rules for working in the United States, and general issues regarding outsourcing.
SSC invests in technology that supports a whole-of-government or “enterprise” approach by enabling organizations to shift toward the use of common IT systems. SSC’s contract with BMC reflects this approach to IT transformation, in that it provides for a single, modern ITSM tool available for use across the GC.
Information technology service management is, in part, the practice of managing IT delivery and operations for an organization’s customers. At SSC, the ITSM solution is being configured to manage service requests, changes and incidents for each of SSC’s services. The implementation of the solution is improving SSC’s ability to provide integrated quality services to partner departments.
On February 4, 2022, this contract was alluded to in the House of Commons by Mr. Kelly McAuley, member of Parliament, focusing on the fact the work was occurring outside Canada and the government’s overall posture on cyber security.
A complete security assessment was undertaken by SSC. On an exceptional basis, the contractors were allowed to perform unclassified work outside of Canada until May 31, 2022, while COVID-19 related travel restrictions were in place for non-essential travelers. The security risk was carefully assessed, and robust mitigation measures were put in place to protect government assets and information. Safeguards were also put in place to ensure that non-authorized non-Canadians didn’t have access to certain information.
An amendment for an additional $20 million was proactively disclosed late due to technical issues, however it has since been posted. Technical issues have been addressed by adding manual processes to avoid similar situations in the future.
The initial contract and all amendments up to June 2022 have been proactively disclosed, as of July 30, 2022. Any amendments made between July to September 2022 have been disclosed by October 30, 2022, on the open government site, in line with the guidelines on proactive disclosure.
An additional contract amendment was completed on Oct 17, 2022, to extend the contract to August 27, 2026 (from the original August 28, 2019, to August 27, 2022). However, no funds added to the contract.
Cloud services in the Government of Canada
Key messages
- Cloud application development and hosting offer opportunities to improve essential digital service to Canadians
- The Cloud Adoption Strategy guides departments to use the public cloud to store, manage and process data and applications, when it makes sense to do so
- The Government of Canada benefits from the flexibility provided by public cloud, as commoditized services can grow and shrink with the level of demand; we pay only for what we need, when we need it
- While reliance on cloud services is increasing, most of the IT operations continue, and will continue, to rely on data centers and networks operated by Government of Canada employees
- Secure access to cloud services is amongst the array of services provided by SSC to its partners and clients
- As such, SSC is investing to grow the capacity of its personnel to support partner departments and clients, so they can operate securely both in data centers and the cloud
- Utilisation of cloud services through SSC’ grew from $1.4 million in fiscal year 2019 to 2020 to $103.8 million in fiscal year 2021 to 2022
If pressed on procurement of cloud services:
- cloud adoption is a shared responsibility across the government. SSC enables cloud adoption and provides critical building blocks, such as access to cloud services, secure connectivity and active monitoring, guidance and expertise
- through a competitive process, SSC established a procurement vehicle to provide government departments with access to world-class, secure cloud services from pre-qualified vendors who meet security requirements
- departments can select the cloud services that best meet their business and technical requirements, and according to the clear standards
If pressed on Amazon Web Services:
- Amazon Web Services is one of the 8 pre-qualified vendors. These are separate and distinct from general distribution, shipping, or warehousing services offered by companies such as Amazon
If pressed on ThinkOn Inc.:
- ThinkOn Inc. is one of the 8 pre-qualified vendors on SSC’s procurement vehicle
- through SSC’s procurement vehicle, ThinkOn services are currently leveraged by 5 GC departments and agencies:
- SSC
- Canadian Transportation Agency
- Destination Canada
- Innovation, Science and Economic Development Canada
- Women and Gender Equality
If pressed on cloud security:
- the protection and privacy of Government of Canada data stored and processed in the cloud is a top priority for SSC
- measures in place that enforce where data resides and how it is controlled
- processes are in place to ensure that specific security requirements and standards are met when awarding cloud contracts
- to securely consume cloud services, each department must implement and maintain specific security guardrails
- SSC actively monitors adherence to security requirements
Background
To enable GC cloud adoption and support progress towards a digital government, SSC ensures that a variety of cloud services are available to meet the unique business needs of each federal department. SSC also acts as a centre of excellence for cloud services across the government, providing technical expertise and tools to guide customers and simplify cloud adoption.
SSC’s optional cloud brokering service provides customers with self-serve access to commercial cloud services. SSC acts as a bridge between customers and cloud service providers offering software-as-a-service (SaaS), platform-as-a-service level (PaaS), and infrastructure-as-a-service (IaaS) public cloud services.
To support Government of Canada access to cloud supply, Shared Services Canada established framework agreements with 8 leading cloud service providers:
- Amazon Web Services, Inc
- Google Cloud Canada Corporation
- IBM Canada Limited
- IPSS Inc., ServiceNow Inc. in Joint Venture
- Microsoft Corporation
- Oracle Canada ULC
- Salesforce.com Canada Corporation
- ThinkOn Inc
The framework agreements provide departments with standardized terms and conditions, and cloud services that have been assessed by the Canadian Centre for Cyber Security and the Contract Security Program. The government has processes in place to ensure specified security requirements are met when awarding cloud contracts.
Since the establishment of the framework agreements, overall consumption has been growing. The total consumption for year 2019 to 2020 was $1,395,709 and grew to $103,807,761 by fiscal year 2021 to 2022. Consumption through the framework agreements is shared across the 8 cloud service providers, in alignment with the needs of GC departments and agencies.
All pre-qualified suppliers and available cloud services are accessible in one place: the Government of Canada cloud services portal.
Other levels of government can, and do, make use of these framework agreements. A few examples are:
- the Ontario Ministry of Health and Long-Term Care
- the Halton Region
- the Government of British Columbia
- a board of education of school district in Vancouver
The protection and privacy of Government of Canada data stored and processed in the cloud is a top priority for SSC.
GC departments and agencies that use cloud services remain accountable for the confidentiality, integrity, and availability of IT services and related information that a cloud service provider hosts.
In 2019, SSC, the Treasury Board Secretariat’s Office of the Chief Information Officer (TBS OCIO) and the Canadian Centre for Cyber Security co-developed a Secure Cloud Operationalization Framework for enabling secure access to public Protected B cloud services for the Government of Canada. This Included a minimum set of 12 mandatory guardrails, which departments are obligated to implement. SSC has the validation function, including reporting and notification of customer compliance to the guardrails, while TBS OCIO has the compliance function, such as remediation oversight and enforcement.
Amazon Web Services Inc
On April 1, 2022, TVA shared a news report, stating that expenditures related to Amazon Web Services (AWS) increased, both for the Government of Canada and the Government of Québec. It states that, across the federal government, over the last year, the federal government spent $24.6 million on services provided by AWS.
At Government Operations Committee, on April 29, 2022, member of Parliament Julie Vignola (Bloc Québécois ) asked Minister Tassi the following question:
Last year alone, the federal government signed contracts totalling $24.6 million with Amazon Web Services, which is about $2.4 million more than the annual amount it invests in Canada Post. That's not counting other contracts from 2011 to 2020 and those with the Canada Border Services Agency.
Is it normal for the federal government and its agencies to do business with American companies instead of a Crown corporation? Doesn't this send the message that the Crown corporation is not even competitive enough to serve the government properly?
The Amazon Web Services are separate and distinct from general distribution, shipping, or warehousing services offered by companies such as Amazon, and are not services offered by Canada Post.
ThinkOn Inc
On October 21, 2022, the Globe and Mail published an article stating ThinkOn never worked on the CBSA ArriveCan app, despite ThinkOn’s name appearing on the CBSA September 2022 Report to Parliament on the costs of developing and supporting the app. On October 26, 2022, the Globe and Mail published a second article stating that Microsoft, not ThinkOn, received the $1.2 million contract related to the ArriveCan app. CBSA is conducting a full review of contracts related to the ArriveCan app.
The ArriveCan app was built and is hosted in an Amazon Web Services environment and uses Google’s Captcha solution as a security measure to verify users are not robots. It was launched across the country on July 20, 2020, as a means to enable travellers to submit customs and immigration declarations online in advance of flying into Canada for a faster border experience. The cloud-based application was developed between CBSA and Public Health Agency of Canada. SSC’s primary role in the ArriveCan app has been enabling the cloud connectivity, testing the solution and monitoring the supporting infrastructure.
Currently only 5 customers have accounts with ThinkOn through SSC’s framework agreements:
- SSC—total consumption $472,580
- Canadian Transportation Agency—total consumption $47,984
- Destination Canada—total consumption $33,622
- Innovation, Science and Economic Development Canada—total consumption $30,094
- Women and Gender Equality—total consumption $2,523
Total consumption of ThinkOn services since 2020 to 2021: $586,803
Document navigation for "Standing Committee on Government Operations and Estimates: November 24, 2022"
- Date modified: