List the assessment methods to be used and the context and resources required for assessment. Copy and paste the relevant sections from the evidence guide below and then re-write these in plain English.
ELEMENT | PERFORMANCE CRITERIA |
Elements describe the essential outcomes. | Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Direct the strategic planning for ICT resources | 1.1 Critically analyse the organisational environment 1.2 Ensure compliance with legislative and social requirements 1.3 Establish priorities, based on organisational needs 1.4 Establish the ICT infrastructure 1.5 Lead the development and implementation of a strategic plan for ICT resourcing |
2. Lead the risk management of ICT resources and processes | 2.1 Lead the development of a strategy for risk assessment 2.2 Ensure that the risk assessment complies with organisational policy 2.3 Ensure that risk mitigation is based on identified risks |
3. Direct the quality assurance processes for ICT services | 3.1 Lead the development of a quality assurance strategic plan 3.2 Monitor the quality processes 3.3 Oversee the implementation of quality assurance strategies 3.4 Ensure that continuous improvement is undertaken |
Evidence of the ability to:
lead the development of a strategy to align information and communications technology (ICT) services, with organisational goals
lead and monitor a risk analysis, including security for ICT assets
implement procedures that identify where risk occurs, and what measures need to be taken
produce contingency plans for business continuity
establish warning systems, and an ongoing process, that includes regular or programmed reviews of the risk profile
lead the development of a strategy and the implementation of a quality assurance process.
Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.
To complete the unit requirements safely and effectively, the individual must:
summarise the security products, and organisational security policies, that affect ICT services
research and then outline, the standards that relate to risk management principles and guidelines
discuss business continuity issues for the organisation
examine the organisation’s industry and current functionality, including the existing data and information systems
review and describe, the organisation’s internal and external dependencies and interdependencies
describe the organisational policies and procedures, including the risk-management strategy
review and analyse, past and current internal, external and industry disruptions
outline the relevant legislation and regulations that impact on business continuity including:
workplace health and safety (WHS)
environment
duty of care
contracts
business and company law
freedom of information
industrial relations
privacy and confidentiality
due diligence
records management.
Gather evidence to demonstrate consistent performance in conditions that are safe and replicate the workplace. Noise levels, production flow, interruptions and time variances must be typical of those experienced in the general ICT industry, and include access to:
relevant strategic level enterprise documentation, including:
planning
financial
ICT infrastructure
codes of practice, legislation and regulations
organisational policies and procedures.
Assessors must satisfy NVR/AQTF assessor requirements.