Risk Assessment for Public Cloud Services¶
Status: ✅ Approved Version: 3.0
| Field | Value |
|---|---|
| ID | GUARD-GOV-017 |
| Category | Governance |
| Subcategory | cloud-risk-management |
| Type | guideline |
| Owner | Government Chief Digital Officer (GCDO) |
| Approved by | — |
| Approved date | — |
| Review due | — |
Description¶
Guidance on how to assess risks when adopting or modifying public cloud services in government agencies, including a risk discovery tool, jurisdictional risk considerations, and processes for documenting and approving risk decisions.
Source document¶
Risks assessment for public cloud services | NZ Digital government
Last fetched: 2026-04-22
Related guardrails¶
- GUARD-CLOUD-001 — Cloud First Policy – NZ Government
- GUARD-CLOUD-002 — All of Government Cloud Sourcing Strategy
- GUARD-SEC-007 — New Zealand Government Cloud Adoption and Risk Assessment Framework
Change history¶
| Version | Date | Author | Summary |
|---|---|---|---|
| 1.0 | 2026-04-21 | auto-generated | Initial entry created from NZ Digital Government source |
| 2.0 | 2026-04-21 | auto-generated | Updated description and tags to reflect comprehensive risk assessment framework; aligned with latest GCDO cloud adoption requirements and risk discovery tool documentation |
| 3.0 | 2026-04-22 | auto-generated | Updated source metadata with current external URL and content hash; verified alignment with cloud risk governance standards and GCDO ownership |