The important thing to remember when gathering evidence is that the more evidence the better - that is, the more evidence you gather to demonstrate your skills, the more confident an assessor can be that you have learned the skills not just at one point in time, but are continuing to apply and develop those skills (as opposed to just learning for the test!). Furthermore, one piece of evidence that you collect will not usualy demonstrate all the required criteria for a unit of competency, whereas multiple overlapping pieces of evidence will usually do the trick!
From the Wiki University
What evidence can you provide to prove your understanding of each of the following citeria?
Identify digital supply chain risks
|
|
Risks, including vulnerabilities in the digital supply chain, are identified and mapped Completed |
Evidence:
|
Cyber security risks related to third parties in the digital supply chain are identified |
|
Completed |
Evidence:
|
Digital supply chain risks are prioritised for severity of impact |
|
Completed |
Evidence:
|
Responsibility and level of authority for monitoring risk management practices in the digital supply chain is confirmed |
|
Completed |
Evidence:
|
Develop digital supply chain risk management plan
|
|
Digital supply chain risk management plan is developed and communicated to stakeholders Completed |
Evidence:
|
Digital supply chain risk management system is developed, in accordance with the risk management plan |
|
Completed |
Evidence:
|
Digital supply chain risk management policies, procedures, processes and practices are developed, in consultation with stakeholders |
|
Completed |
Evidence:
|
Reporting mechanisms are established, in accordance with the risk management plan |
|
Completed |
Evidence:
|
Implement digital supply chain risk managementpractices
|
|
Risk mitigation is undertaken, in accordance with risk management procedures Completed |
Evidence:
|
Digital supply chain dashboard metrics are used to assess risks, identify causes and inform stakeholders |
|
Completed |
Evidence:
|
Risks to the technical integrity of the digital supply chain are reported, in accordance with risk management procedures |
|
Completed |
Evidence:
|
Responses to unplanned digital supply chain events are managed, in accordance with risk management procedures |
|
Completed |
Evidence:
|
Review and report ondigital supply chain risk management practices
|
|
Digital supply chain risk outcomes, including cyber security, are assessed and the effectiveness of risk mitigation is reviewed, in consultation with stakeholders Completed |
Evidence:
|
Continuous monitoring and assessment of digital supply chain data related to risk management practices is reviewed |
|
Completed |
Evidence:
|
Report on digital supply chain risk management practices is prepared and presented to approved stakeholders |
|
Completed |
Evidence:
|
Continuous improvement actions that support risk management practices are documented |
|
Completed |
Evidence:
|