Any link with this image signifies that this information is only accessible to federal government employees, and only to federal departments and agencies.
The SACO is the Department's lead, authorized by senior management to provide security signing and/or administrative authorities on behalf of their organization for user access to Public works and government services Canada (PWGSC) mainframe applications such as the Pay System.
The SACO acts as the interface between the Enterprise Security Administration(ESA) or the appropriate PWGSC regional office (see Section 39) and the staff in their organization in the provision of access to system resources and information. The SACO designation is made using the "Security Access Control Officer (SACO) Application" form (PWGSC-TPSGC 146) . The ESA or the appropriate PWGSC regional office must be advised as soon as possible should a SACO no longer require signing authority. This and/or any other changes can be made using the same form.
The (PWGSC-TPSGC 146) only appoints or removes an employee as a SACO. In order for the SACO to obtain access to the compensation system he will be required to also submit the "Common Architecture Security Request" form (PWGSC-TPSGC 8882-4) .
The SACO s are responsible for ensuring that all security request forms (PWGSC-TPSGC 8882-4) are completed properly and forwarded to ESA or to the appropriate PWGSC regional office (see section 39) for processing. They are also responsible for obtaining the user's signature establishing that the user agrees to be bound by the Computer and Information Access Control Rules found on page 2 of the (PWGSC-TPSGC 8882-4) form. The form for each user must be maintained on file. The SACO s will need to be familiar with naming conventions of user IDs, Top Secret Security (TSS) department names and profile names. This information can be obtained by contacting the ESA or the appropriate PWGSC regional office (see section 39).
The SACO s are responsible for verifying that all user IDs belong to the correct individuals and that the assigned access rights are still required. Any discrepancies that are found must be corrected immediately. The SACO designation is only valid for one year. A SACO renewal reminder is forwarded to the SACO by ESA or to the appropriate PWGSC regional office 30 days prior to the expiration of the designation. Upon the SACO's annual renewal, the individual must confirm the completion of this review by signing the front of the (PWGSC-TPSGC 146) form in field number 7.
The responsibility for segregation of duties lies with departments and agencies. The requirements related to this activity are explained below. Departments and agencies must establish policies and procedures to ensure that an adequate level of control exists related to pay transaction delegated authorities, and that persons with delegated authorities understand their responsibilities. It is the also the responsibility of departments and agencies to ensure that all designated SACO s receive the necessary training to perform their functions.
Client departments who wish to learn more about the delegation of authorities should consult the Directive on Delegation of Financial Authorities for Disbursements at the following address: Directive on Delegation of Financial Authorities for Disbursements
The Service Management and Delivery (SM&D) ESA group administers access to a variety of systems and services managed by the organization. These include access to mainframe, secure remote access for PWGSC , Electronic Authorization and Authentication (EAA) on behalf of financial applications and access to the Internet. The group also manages the administration of specialty services such as Standard Payment System (SPS) priority print and secure electronic transfer for Human Resources and Skills Development Canada (HRSDC).
These services are administered with the assistance of a large network of SACO s who identify specific client requirements and act as the interface between the clients and PWGSC in the provision of access to resources and information.
New SACO s are identified by forwarding the completed (PWGSC-TPSGC 146) form to the ESA or to the responsible PWGSC regional office (see Section 39). The SACO 's manager or director must sign and date the form.
The ESA will contact new SACO s to provide any relevant information required for communication and interaction in regards to the creation and maintenance of user IDs for access to the Pay System.
The Compensation Sector assists users in departments and agencies to use the Compensation Systems and tools when encountering problems. In addition to providing various pay support related functions, PWGSC is responsible for the creation of a new department and paylists. In the context of RPS access and security management, there are two Directorates involved: