Federal Government Agency Achieves Cloud-Smart Compliance
The Challenge
A Canadian federal agency needed to migrate legacy on-premises systems to the cloud while meeting the Government of Canada's Cloud-Smart strategy and stringent Protected B security requirements. The agency operated 40+ applications serving 8,000 employees, with strict data residency requirements mandating all data remain within Canadian borders. Previous migration attempts had stalled due to the complexity of meeting ITSG-33 security controls.
The Solution
Zaha developed a comprehensive cloud migration roadmap that categorized all 40+ applications by migration suitability (rehost, refactor, rebuild, or retire). We established a Protected B-compliant landing zone on AWS GovCloud Canada region, implementing all required ITSG-33 security controls including encryption at rest and in transit, network segmentation, and comprehensive logging. Our team migrated applications in waves, starting with lower-risk workloads to build confidence and refine processes. We implemented infrastructure as code using Terraform modules pre-configured for Government of Canada compliance requirements, and established a Cloud Centre of Excellence within the agency.
The Results
“The cloud migration project was executed flawlessly. Zaha's team navigated our complex compliance requirements while delivering the project two weeks ahead of schedule.”— CIO, Canadian Federal Agency
Ready to Achieve Similar Results?
Connect with our experts to discuss how we can help your organization.