Google Links

Follow the links below to find material targeted to the unit's elements, performance criteria, required skills and knowledge

Elements and Performance Criteria

  1. Establish risk context
  2. Identify risk factors
  3. Implement contingency plans
  4. Monitor, update and report risk profile

Required Skills

Required skills

analytical skills to analyse the risk associated with ICT systems and technologies

communication skills to work with project teams on risk reviews

literacy skills to

disseminate and document technical specifications

write policy

numeracy skills to scale risks

planning and organisational skills to

manage risk

plan for contingencies

Required knowledge

detailed knowledge of risk management

overview knowledge of

Australian Computer Society Code of Ethics

business process design

how business sites fit into corporate strategy

copyright and intellectual property in relation to IT systems and technology

privacy legislation relating to IT systems and technology

technology updating guidelines

business supply chain

user analysis and the CRM

Evidence Required

The evidence guide provides advice on assessment and must be read in conjunction with the performance criteria required skills and knowledge range statement and the Assessment Guidelines for the Training Package

Overview of assessment

Critical aspects for assessment and evidence required to demonstrate competency in this unit

Evidence of the ability to

identify where risk occurs

highlight the measures that will mitigate or obviate risk

set up procedures for regular risk reviews

Context of and specific resources for assessment

Assessment must ensure access to

analysis software

business website

networks

requirements documentation

risk management plan

site server

site server software

software applications

updated or new technology

user analysis

web servers

appropriate learning and assessment support when required

modified equipment for people with special needs

Method of assessment

A range of assessment methods should be used to assess practical skills and knowledge The following examples are appropriate for this unit

verbal or written questioning to assess candidates knowledge of

risk management

business process design

review of candidates documented outcomes of risk assessment process

evaluation of candidates documented contingency plans

direct observation of candidate conducting risk reviews at project milestones

Guidance information for assessment

Holistic assessment with other units relevant to the industry sector workplace and job role is recommended where appropriate

Assessment processes and techniques must be culturally appropriate and suitable to the communication skill level language literacy and numeracy capacity of the candidate and the work being performed

Indigenous people and other people from a nonEnglish speaking background may need additional support

In cases where practical assessment is used it should be combined with targeted questioning to assess required knowledge


Range Statement

The range statement relates to the unit of competency as a whole. It allows for different work environments and situations that may affect performance. Bold italicised wording, if used in the performance criteria, is detailed below. Essential operating conditions that may be present with training and assessment (depending on the work situation, needs of the candidate, accessibility of the item, and local industry and regional contexts) may also be included.

Business requirements may relate to:

business

network

people in the organisation

system.

Contingency plans may include:

identifying weaknesses and providing for the implementation of a disaster prevention program

minimising disruption to business operations

providing a coordinated approach to the disaster recovery process.

System may include:

application service provider

applications

databases

gateways

internet service provider (ISP)

operating systems

servers.