Assessor Resource
ICAI5250A
Develop, implement and evaluate system and application security
Assessment tool
Version 1.0
Issue Date: May 2024
This unit defines the competency required to develop, implement and evaluate information security in an IT system or application during the System Development Life Cycle (SDLC) prior to the Operations and Maintenance phase.
The practice of these protocols ensures that the operation of IT systems and software does not present undue risk to the enterprise and its information assets.
This objective is accomplished through risk assessment; risk mitigation; security control selection, implementation and evaluation; and software security standards compliance.
No licensing, legislative, regulatory or certification requirements apply to this unit at the time of publication.
You may want to include more information here about the target group and the purpose of the assessments (eg formative, summative, recognition)