Security Requirements Check List (SRCL)

The Security Requirements Check List (SRCL) is Treasury Board Form 350-103, the mandatory document that identifies what security clearances and safeguards contractors need when handling protected or classified government information. If your contract involves anything beyond public information—whether it's protected data, classified assets, or access to sensitive sites—you'll need to complete this form before the contract moves forward.

How It Works

Every requisition, tender, and contract that touches protected or classified material must include a completed SRCL. The project authority fills out the form, specifying exactly what security clearances personnel need—Reliability Status, Confidential, Secret, or Top Secret—and what information safeguarding requirements apply. Your organization's security officer then reviews it to ensure everything aligns with the Standard on Security in Contracting.

The form gets specific. Does your staff need Secret clearance to access a sensitive worksite? Will you handle PROTECTED B information on your premises? Multiple screening levels might apply to different team members, especially if a Security Classification Guide accompanies the requirement. Public Services and Procurement Canada (PSPC) processes these through their online industrial security services system (SEDSI), where authorized government users can electronically complete and submit the checklist. Once submitted, it becomes part of your contractual obligations.

In practice, the government has developed 39 common SRCLs for professional services—a standardized approach that saves time when similar security requirements appear across multiple procurements. You'll find these listed on the common security requirement checklists page, covering everything from IT services to management consulting. The standardization means contractors working in specific sectors can anticipate what clearances they'll need.

Key Considerations

• Subcontracts need them too. Many suppliers don't realize the SRCL requirement flows down to subcontractors. If your sub handles classified work, they need the same security protocols and valid clearances.

• Personnel screening takes time. Secret clearances can take months to process—sometimes six months or longer depending on the complexity of background checks. Factor this into your bid timeline and resource planning. You can't start work requiring clearance until it's granted.

• Site Access is separate from clearance level. Even if someone holds a Secret clearance, they might still need Site Access designation for specific government facilities. The two don't automatically go together.

• Safeguarding obligations extend beyond access. You might need to upgrade physical security at your premises—locked filing cabinets for PROTECTED documents, approved IT systems for classified information. The SRCL form spells out these requirements clearly, so there's no guessing what infrastructure you'll need.

Related Terms

Personnel Security Screening, Controlled Goods Program, Security Classification Guide, Contract Security Program

Sources

• Security Requirements Check List (SRCL) - TBS Form 350-103, Treasury Board of Canada Secretariat

• Common Security Requirement Check Lists, Public Services and Procurement Canada

• Government of Canada Supply Manual, PSPC

Bottom line: treat the SRCL as a planning document, not just paperwork. Understanding security requirements early helps you allocate resources properly and avoid delays when clearances take longer than expected.