This unit applies to individuals in senior information and communications technology (ICT) roles in a variety of areas who are required to assess potential implications of new technologies, both monetary and technical.
Elements and Performance Criteria
1. Establish the risk context
1.1 Review organisational and technical environment and proposed business solution
1.2 Identify scale, importance and complexity of project risks
1.3 Establish acceptable and unacceptable levels of risk and consequences for the solution
1.4 Identify the impact of risks against the business environment
1.5 Determine and document proposed actions to insure against identified generic risks
2. Conduct risk analysis
2.1 Conduct a risk analysis to determine the likelihood of risks identified
2.2 Rank risk factors according to the impact and likelihood of occurrence
2.3 Develop contingency plans to mitigate identified risks
2.4 Document risk analysis and contingencies in a risk- management plan
2.5 Implement risk management plans and undertake awareness training to inform stakeholders
3. Monitor risks
3.1 Establish feedback channels to warn of unforeseen and identified risks
3.2 Conduct regular reviews to identify new risks and update established risks
3.3 Document changes to risk management plans as appropriate
analytical skills to review organisational and technical business solutions
communication skills to liaise with stakeholders and provide training
literacy skills to:
write and dissemination policy
write technical documents
numeracy skills to assess financial risk
planning and organisational skills to:
develop mitigation strategies
manage a project
manage risk and implement contingency plans
technical skills to:
maintain and administer a site
use site design software and hardware.
business process design
business supply chain
copyright and intellectual property relating to new technologies
how business sites fit into corporate strategy
user analysis and the CRM.
The evidence guide provides advice on assessment and must be read in conjunction with the performance criteria, required skills and knowledge, range statement and the Assessment Guidelines for the Training Package.
Overview of assessment
Critical aspects for assessment and evidence required to demonstrate competency in this unit
Evidence of the ability to:
develop procedures that identify where risk occurs
identify measures to be taken to treat the risk.
Context of and specific resources for assessment
Assessment must ensure access to:
customer relationship model (CRM)
site server software
updated or new technology
appropriate learning and assessment support when required
modified equipment for people with special needs.
Method of assessment
A range of assessment methods should be used to assess practical skills and knowledge. The following examples are appropriate for this unit:
verbal or written questioning to assess candidate’s knowledge of:
financial calculations of risk
review of candidate’s documented risk management plan
evaluation of candidate’s risk review procedures.
Guidance information for assessment
Holistic assessment with other units relevant to the industry sector, workplace and job role is recommended, where appropriate.
Assessment processes and techniques must be culturally appropriate, and suitable to the communication skill level, language, literacy and numeracy capacity of the candidate and the work being performed.
Indigenous people and other people from a non-English speaking background may need additional support.
In cases where practical assessment is used it should be combined with targeted questioning to assess required knowledge.
The range statement relates to the unit of competency as a whole. It allows for different work environments and situations that may affect performance. Bold italicised wording, if used in the performance criteria, is detailed below. Essential operating conditions that may be present with training and assessment (depending on the work situation, needs of the candidate, accessibility of the item, and local industry and regional contexts) may also be included.
Solution may include:
implementing a new system
new hardware and hardware upgrades
new software and software upgrades
Contingency plans may include:
identifying weaknesses and providing for the implementation of a disaster prevention program
minimising disruption to business operations
providing a coordinated approach to the disaster recovery process.
Risk-management plan may include:
insuring against risk may include transferring risk to external technicians or ensuring that indemnity insurance is valid and appropriate to the situation
potential risk events, preferred and alternative risk management strategies and actions, formal arrangements, responsibility assignment, contingency plans and assigned risk responsibilities.
Stakeholders may include:
Systems analysis and design
This unit contains employability skills.
No licensing, legislative, regulatory or certification requirements apply to this unit at the time of endorsement but users should confirm requirements with the relevant federal, state or territory authority.