Google Links

Follow the links below to find material targeted to the unit's elements, performance criteria, required skills and knowledge

Elements and Performance Criteria

  1. Direct the strategic planning for ICT resources
  2. Lead the risk management of ICT resources and processes
  3. Direct the quality assurance processes for ICT services

Performance Evidence

Evidence of the ability to:

lead the development of a strategy to align information and communications technology (ICT) services, with organisational goals

lead and monitor a risk analysis, including security for ICT assets

implement procedures that identify where risk occurs, and what measures need to be taken

produce contingency plans for business continuity

establish warning systems, and an ongoing process, that includes regular or programmed reviews of the risk profile

lead the development of a strategy and the implementation of a quality assurance process.

Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.


Knowledge Evidence

To complete the unit requirements safely and effectively, the individual must:

summarise the security products, and organisational security policies, that affect ICT services

research and then outline, the standards that relate to risk management principles and guidelines

discuss business continuity issues for the organisation

examine the organisation’s industry and current functionality, including the existing data and information systems

review and describe, the organisation’s internal and external dependencies and interdependencies

describe the organisational policies and procedures, including the risk-management strategy

review and analyse, past and current internal, external and industry disruptions

outline the relevant legislation and regulations that impact on business continuity including:

workplace health and safety (WHS)

environment

duty of care

contracts

business and company law

freedom of information

industrial relations

privacy and confidentiality

due diligence

records management.