ESKISP Direct security architecture development

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "ESKISP6046.02 Direct security architecture development"

Transcription

1 Overview This standard covers the competencies concerned with directing security architecture activities. It includes setting the strategy and policies for security architecture, and being fully accountable for successful security architecture development activities and deliverables. ESKISP

2 Performance criteria You must be able to: P1 be fully accountable for information security architecture development P2 P3 P4 P5 P6 P7 P8 set the strategy, policies and standards relating to information security architecture implement and update the procedures, tools and techniques relating to information security architecture development activities as required negotiate effectively with sponsors and stakeholders on the implications of information security architecture activities for the wider business set the resourcing strategy and correctly source appropriately skilled internal/external individuals where necessary to undertake and/or manage information security architecture and roadmap activities effectively apply information security architecture models and roadmaps to conduct security risk analysis on information systems scenario planning advise others on all aspects of information security architectures including best practice and the application of lessons learned provide thought leadership on information security architecture, contributing to internal best practice and to externally recognised publications, white papers ESKISP Direct security Architecture Development 2

3 Knowledge and understanding You need to know and understand: K1 K2 K3 K4 K5 K6 K7 K8 K9 how to source appropriately skilled individuals where necessary to undertake information security architecture work the most appropriate approaches and best practice to undertake architecture work the processes tools and techniques to monitor the alignment of information security architecture activities with all relevant legislation, regulations and external standards how to assess the skills of internal/external individuals necessary to undertake information security architecture and roadmap work the range of existing and new information security models and roadmaps that influence strategic business decision making and security planning how to audit the outcomes of the information security requirements to ensure the security architecture is proportional to the risks associated with a particular system how to implement information security design reviews to validate the designs and architectures for new information systems projects the fact that individuals involved in information security architecture and roadmap activities need to remain aware of the 'real life' business and technology operational activities to ensure their work remains relevant who needs to lead information security architecture assignments K10 how threat modelling can be applied to preventive information security design and architecture practices K11 the design principles required that support embedding security into information security architectures that are used to inform secure development activities K12 how to apply the lessons learned from prior and/or others' experience in ESKISP Direct security Architecture Development 3

4 information security architecture work K13 how to establish information security models and roadmaps as a means of proactively identifying opportunities for improvement K14 the skills that the information security architecture designers and developers need to possess in order to operate effectively ESKISP Direct security Architecture Development 4

5 Developed by e-skills UK Version number 1 Date approved February 2013 Indicative review date Validity Status Originating organisation Original URN Relevant occupations Suite Key words December 2015 Current Original e-skills UK ESKISP Information and Communication Technology; Information and Communication Technology Professionals; Information and Communication Technology Officer; IT Service Delivery Occupations; Software Development Information Security Cyber Security; Information Security ESKISP

ESKISP6056.01 Direct security testing

ESKISP6056.01 Direct security testing Direct security testing Overview This standard covers the competencies concerning with directing security testing activities. It includes setting the strategy and policies for security testing, and being

More information

ESKITP714401 Implement procedures and standards relating to metrics for IT service delivery

ESKITP714401 Implement procedures and standards relating to metrics for IT service delivery Overview This sub-discipline covers the competencies required to perform performance metrics. Monitoring service level performance is a complex task requiring collection of data, detailed analysis, and

More information

ESKITP6036 IT Disaster Recovery Level 5 Role

ESKITP6036 IT Disaster Recovery Level 5 Role Overview This sub-discipline is about the competencies required in order to manage all aspect of Disaster Recovery (DR), as it applies to IT within an organisation. ESKITP6036 1 Performance criteria You

More information

Overview TECHIS60851. Manage information security business resilience activities

Overview TECHIS60851. Manage information security business resilience activities Overview Information security business resilience encompasses business continuity and disaster recovery from information security threats. As well as addressing the consequences of a major security incident,

More information

ESKITP6026 IT Security Management Level 6 Role

ESKITP6026 IT Security Management Level 6 Role Overview This sub-discipline is about the competencies required to ensure the security of all aspects of Information Technology services, systems and assets within an organisation. This includes the data,

More information

ESKITP714601 Authorise strategy, policies and standards relating to IT service delivery performance metrics management

ESKITP714601 Authorise strategy, policies and standards relating to IT service delivery performance metrics management service delivery performance metrics Overview This sub-discipline covers the competencies required to direct the monitoring, analysis and communication of IT service delivery performance metrics. Monitoring

More information

ESKISP6064.03 Conducts vulnerability assessment under supervision

ESKISP6064.03 Conducts vulnerability assessment under supervision Conducts vulnerability assessment under supervision Overview This standard covers the competencies required to conduct vulnerability assessments under supervision. This includes following processes for

More information

ESKISP6054.01 Conduct security testing, under supervision

ESKISP6054.01 Conduct security testing, under supervision Overview This standard covers the competencies required to conduct security testing under supervision. In order to contribute to the determination of the level of resilience of an information system to

More information

ESKITP2035.01 Identify change management opportunities and options for IT enabled systems 1

ESKITP2035.01 Identify change management opportunities and options for IT enabled systems 1 Identify change management opportunities and options for IT enabled Overview This sub-discipline, Change Management (203) is concerned with the competencies required to manage the introduction of business

More information

ESKITP2034.03 Assist in the preparation of change management plans and assignments for IT enabled systems 1

ESKITP2034.03 Assist in the preparation of change management plans and assignments for IT enabled systems 1 Assist in the preparation of change management plans and assignments for IT Overview This sub-discipline, Change Management (203) is concerned with the competencies required to manage the introduction

More information

ESKISP6055.01 Manage security testing

ESKISP6055.01 Manage security testing Overview This standard covers the competencies concerning with managing security testing activities. Including managing resources activities and deliverables. This includes planning, conducting and reporting

More information

ESKITP7145.01 Manage IT service delivery performance metrics

ESKITP7145.01 Manage IT service delivery performance metrics Overview This sub-discipline covers the competencies required to manage the monitoring, analysis and communication of IT service delivery performance metrics. Monitoring service level performance is a

More information

ESKITP6034 IT Disaster Recovery Level 4 Role

ESKITP6034 IT Disaster Recovery Level 4 Role Overview This sub-discipline is about the competencies required in order to manage all aspect of Disaster Recovery (DR), as it applies to IT within an organisation. ESKITP6034 1 Performance criteria You

More information

ESKITP5022 Software Development Level 2 Role

ESKITP5022 Software Development Level 2 Role Overview This sub discipline covers the core competencies required to create software to address the needs of business problems and opportunities, resulting in a variety of software solutions, ranging

More information

Contribute to IT architecture work

Contribute to IT architecture work Overview This sub-discipline is concerned with the competencies required to create, maintain and manage IT architecture models representing the operating model for an organisation and their lower level

More information

Overview TECHIS60341. Carry out security architecture and operations activities

Overview TECHIS60341. Carry out security architecture and operations activities Overview The protection of information, services and systems relies on a range of technical and procedural activities, often grouped in a framework. The framework will contain technical and logical, physical

More information

ESKITP7025 IT/Technology Service Help Desk and Incident Management Level 5 Role

ESKITP7025 IT/Technology Service Help Desk and Incident Management Level 5 Role IT/Technology Service Help Desk and Incident Management Level 5 Role Overview This sub-discipline is about the competencies required to manage the contacts made by customers of IT/technology systems, services

More information

ESKITP4082 IT/Technology Infrastructure Design and Planning Level 2 Role

ESKITP4082 IT/Technology Infrastructure Design and Planning Level 2 Role IT/Technology Infrastructure Design and Planning Level 2 Role Overview This sub-discipline is part of overall service design. It concerns the design of, and planning for, resilient IT/ technology infrastructure

More information

Overview TECHIS60241. Carry out risk assessment and management activities

Overview TECHIS60241. Carry out risk assessment and management activities Overview Information in all its forms is a vital component of the digital environment in which we live and work. The protection of information in its physical form is well understood but the protection

More information

ESKITP2035.02 Design and implement change management plans for IT enabled systems 1

ESKITP2035.02 Design and implement change management plans for IT enabled systems 1 Design and implement change management plans for IT enabled systems Overview This sub-discipline, Change Management (203) is concerned with the competencies required to manage the introduction of business

More information

ESKITP7026 IT/Technology Service Help Desk and Incident Management Level 6 Role

ESKITP7026 IT/Technology Service Help Desk and Incident Management Level 6 Role IT/Technology Service Help Desk and Incident Management Level 6 Role Overview This sub-discipline is about the competencies required to manage the contacts made by customers of IT/technology systems, services

More information

IT Professional Standards. Information Security Discipline. Sub-discipline 605 Information Security Testing and Information Assurance Methodologies

IT Professional Standards. Information Security Discipline. Sub-discipline 605 Information Security Testing and Information Assurance Methodologies IT Professional Standards Information Security Discipline Sub-discipline 605 Information Security Testing and Information Assurance Methodologies December 2012 Draft Version 0.6 DOCUMENT REVIEW Document

More information

ESKISP6053.01 Assist security testing, under supervision

ESKISP6053.01 Assist security testing, under supervision Overview This standard covers the competencies required to assist security testing under supervision. In order to contribute to the determination of the level of resilience of an information system to

More information

ESKITP6032 IT Disaster Recovery Level 2 Role

ESKITP6032 IT Disaster Recovery Level 2 Role Overview This sub-discipline is about the competencies required in order to manage all aspect of Disaster Recovery (DR), as it applies to IT within an. ESKITP6032 1 Performance criteria You must be able

More information

Overview TECHIS60441. Carry out security testing activities

Overview TECHIS60441. Carry out security testing activities Overview Information, services and systems can be attacked in various ways. Understanding the technical and social perspectives, how attacks work, the technologies and approaches used are key to being

More information

ESKITP5023 Software Development Level 3 Role

ESKITP5023 Software Development Level 3 Role Overview This sub discipline covers the core competencies required to create software to address the needs of business problems and opportunities, resulting in a variety of software solutions, ranging

More information

ESKITP5065 Software Development Process Improvement Level 5 Role

ESKITP5065 Software Development Process Improvement Level 5 Role Software Development Process Improvement Level 5 Role Overview This sub-discipline covers the competencies required by an information technology and/or telecoms organisation to ensure that appropriate

More information

CFAM&LBB2 Develop, maintain and evaluate business continuity plans and arrangements

CFAM&LBB2 Develop, maintain and evaluate business continuity plans and arrangements Develop, maintain and evaluate business continuity plans and arrangements Overview This standard is about developing, maintaining and evaluating business continuity plans to ensure that organisations continue

More information

702 IT/Technology Service Help Desk and Incident Management

702 IT/Technology Service Help Desk and Incident Management 702 IT/Technology Service Help Desk and Incident Management This sub-discipline is about the competencies required to manage the contacts made by customers of IT/technology systems, services and assets,

More information

ESKITP7072 IT/Technology Capacity Management Level 2 Role

ESKITP7072 IT/Technology Capacity Management Level 2 Role Overview This sub-discipline is about the competencies required to manage the capacity of IT/technology services, systems and assets that support an organisation. Capacity management covers a range of

More information

ESKITP5022v2 Perform software development activities under direction

ESKITP5022v2 Perform software development activities under direction Perform development activities under direction Overview This sub discipline covers the core competencies required to create to address business problems and realise opportunities, resulting in a variety

More information

Service Management. 702 IT/Technology Service Help Desk and Incident Management

Service Management. 702 IT/Technology Service Help Desk and Incident Management 702 IT/Technology Service Help Desk and Incident Management This sub-discipline is about the competencies required to manage the contacts made by customers of IT/technology systems, services and assets,

More information

Overview COSCSMO10. Implement, monitor and control strategic procurement systems in construction management

Overview COSCSMO10. Implement, monitor and control strategic procurement systems in construction management Overview This standard is about agreeing and implementing with stakeholders what systems are most effective for managing the project. The systems identified will need to be prioritised and formalised if

More information

SFJCCAD2 Promote business continuity management

SFJCCAD2 Promote business continuity management Overview This unit is about providing advice and assistance on business continuity management, including general advice for the business and voluntary sectors, and specific advice and assistance to individual

More information

Risk Management Policy

Risk Management Policy 1 Purpose Risk management relates to the culture, processes and structures directed towards the effective management of potential opportunities and adverse effects within the University s environment.

More information

{Add company name} {Add geographical location} {Add/edit as required} Enterprise Architect. {Add local information}

{Add company name} {Add geographical location} {Add/edit as required} Enterprise Architect. {Add local information} Job Description Business Analyst Organisation: Location: Reports to: Supervises: Working conditions: Last updated: {Add company name} {Add geographical location} {Add/edit as required} Enterprise Architect

More information

Confident in our Future, Risk Management Policy Statement and Strategy

Confident in our Future, Risk Management Policy Statement and Strategy Confident in our Future, Risk Management Policy Statement and Strategy Risk Management Policy Statement Introduction Risk management aims to maximise opportunities and minimise exposure to ensure the residents

More information

FINRMFS9 Facilitate Business Continuity Planning and disaster recovery for a financial services organisation

FINRMFS9 Facilitate Business Continuity Planning and disaster recovery for a financial services organisation Facilitate Business Continuity Planning and disaster recovery for a Overview This unit is suitable for those working in risk management roles who have responsibility for facilitating business continuity

More information

CFAM&LAA2 Develop your knowledge, skills and competence

CFAM&LAA2 Develop your knowledge, skills and competence Overview This standard is about taking responsibility for developing your own knowledge, skills and competence to meet the current and future requirements of your work and to support your personal and

More information

Release: 1. BSBPMG509A Manage project procurement

Release: 1. BSBPMG509A Manage project procurement Release: 1 BSBPMG509A Manage project procurement BSBPMG509A Manage project procurement Modification History Not applicable. Unit Descriptor Unit descriptor This unit describes the performance outcomes,

More information

CCSAPAB2 Develop and agree objectives for archaeological projects

CCSAPAB2 Develop and agree objectives for archaeological projects Develop and agree objectives for archaeological projects Overview This standard is relevant to archaeologists responsible for the development of projects on behalf of clients and the agreement of contracts

More information

Senior Salary Information Disclosure

Senior Salary Information Disclosure Senior Salary Information Disclosure Head of Marketing & Communications To lead on media and public relations, commensurate with policies and strategies developed by the Strategy and Commissioning Directorate

More information

ESKITP7146.01 Authorise strategy, policies and standards relating to IT service delivery performance metrics management

ESKITP7146.01 Authorise strategy, policies and standards relating to IT service delivery performance metrics management service delivery performance metrics Overview This sub-discipline covers the competencies required to direct the monitoring, analysis and communication of IT service delivery performance metrics. Monitoring

More information

APPLICABLE TO: Flow Systems Group and all employees. Risk Management

APPLICABLE TO: Flow Systems Group and all employees. Risk Management PURPOSE: Flow Systems is committed to managing its risks and ensuring compliance with all relevant laws and regulations in a proactive, on-going and positive manner. This document outlines Flow s Risk

More information

ESKITP7052 IT/Technology Management and Support Level 2 Role

ESKITP7052 IT/Technology Management and Support Level 2 Role Overview This sub-discipline is about the competencies required to ensure that the infrastructure required to support the delivery of IT/technology systems, services and assets for an organisation remain

More information

ESKITP7102 IT/Technology Asset and Configuration Management Level 2 Role

ESKITP7102 IT/Technology Asset and Configuration Management Level 2 Role IT/Technology Asset and Configuration Management Level 2 Role Overview This sub-discipline is about the competencies required to maintain the integrity and consistency of the IT/technology configuration

More information

ESKITP5064 Software Development Process Improvement Level 4 Role

ESKITP5064 Software Development Process Improvement Level 4 Role Software Development Process Improvement Level 4 Role Overview This sub-discipline covers the competencies required by an information technology and/or telecoms organisation to ensure that appropriate

More information

ESKITP7042 IT Application Management / Support Level 2 Role

ESKITP7042 IT Application Management / Support Level 2 Role Overview This sub-discipline is about the competencies required to ensure that application systems/services that support specific business functions and processes for an organisation remain available,

More information

Manage our corporate governance practices effectively and efficiently ensuring Country Care service and supports are person centred

Manage our corporate governance practices effectively and efficiently ensuring Country Care service and supports are person centred Introduction Country Care s Customer Service Charter represents our vision and values and sets out what our service users can expect from Country Care when they select us to provide their service. Country

More information

FSPFCC04(SQA Unit Code-F88P 04) Ensure you comply with regulations in your financial services environment

FSPFCC04(SQA Unit Code-F88P 04) Ensure you comply with regulations in your financial services environment Ensure you comply with regulations in your financial services Overview This Standard is about working within the regulatory of the financial services industry. Most organisations within financial services

More information

Technology Services and Solutions (TSS), Shared Services Branch (SSB)

Technology Services and Solutions (TSS), Shared Services Branch (SSB) Senior Architect Technology Services and Solutions (TSS), Shared Services Branch (SSB) The Senior Architect is responsible for translating business strategy, plans and requirements into technology roadmaps

More information

Application Guidance CCP Penetration Tester Role, Practitioner Level

Application Guidance CCP Penetration Tester Role, Practitioner Level August 2014 Issue No: 1.0 Application Guidance CCP Penetration Tester Role, Practitioner Level Application Guidance CCP Penetration Tester Role, Practitioner Level Issue No: 1.0 August 2014 This document

More information

ROLE PROFILE. Performance Consultant (Fixed Term) Assistant Director for Human Resources

ROLE PROFILE. Performance Consultant (Fixed Term) Assistant Director for Human Resources ROLE PROFILE Job Title Reports to Service area No. of staff responsible for Budget responsibility ( ) Performance Consultant (Fixed Term) Assistant Director for Human Resources HR 0 None Purpose of Job

More information

POSITION INFORMATION DOCUMENT

POSITION INFORMATION DOCUMENT POSITION INFORMATION DOCUMENT Position Title: Scheduling Officer, ICT Programs Classification Code: ASO6 Division: ICT Services Directorate: ICT Program Services Type of Appointment: Branch: ICT Program

More information

Cyber Security Consultancy Standard. Version 0.2 Crown Copyright 2015 All Rights Reserved. Page 1 of 13

Cyber Security Consultancy Standard. Version 0.2 Crown Copyright 2015 All Rights Reserved. Page 1 of 13 Cyber Security Consultancy Standard Version 0.2 Crown Copyright 2015 All Rights Reserved Page 1 of 13 Contents 1. Overview... 3 2. Assessment approach... 4 3. Requirements... 5 3.1 Service description...

More information

Network Rail Infrastructure Projects Joint Relationship Management Plan

Network Rail Infrastructure Projects Joint Relationship Management Plan Network Rail Infrastructure Projects Joint Relationship Management Plan Project Title Project Number [ ] [ ] Revision: Date: Description: Author [ ] Approved on behalf of Network Rail Approved on behalf

More information

Release 1. BSBPMG417A Apply project life cycle management processes

Release 1. BSBPMG417A Apply project life cycle management processes Release 1 BSBPMG417A Apply project life cycle management processes BSBPMG417A Apply project life cycle management processes Modification History Release Release 1 Comments This version first released with

More information

Job Description. Information Manager (Spoke) Band 8b

Job Description. Information Manager (Spoke) Band 8b Job Description Information Manager (Spoke) Band 8b Job Title: Team / Directorate: Band: Responsible to: Accountable to: Information Manager (Spoke) Commissioning Intelligence, Commercial Directorate 8b

More information

Position Description

Position Description Position Description Job Title: Reporting To: - Remuneration level: Corporate Planning Officer The Chief Executive Officer Negotiable depending on experience and qualifications Purpose of the position

More information

Position Description

Position Description Position Description Wesley Disability Services Quality Risk & Compliance Specialist Agreement Signed Quality Risk and Compliance Specialist Signed Executive Manager, Wesley Disability Services Date Date

More information

Release: 1. BSBPMG510A Manage projects

Release: 1. BSBPMG510A Manage projects Release: 1 BSBPMG510A Manage projects BSBPMG510A Manage projects Modification History Not applicable. Unit Descriptor Unit descriptor This unit describes the performance outcomes, skills and knowledge

More information

SFJPE1.3 Evaluate the effectiveness of the operational delivery business process

SFJPE1.3 Evaluate the effectiveness of the operational delivery business process Evaluate the effectiveness of the operational delivery business process Overview This standard concerns evaluating the effectiveness of new and adapted business processes. The scope of work needs to address

More information

Risk Management. National Occupational Standards February 2014

Risk Management. National Occupational Standards February 2014 Risk Management National Occupational Standards February 2014 Skills CFA 6 Graphite Square, Vauxhall Walk, London, SE11 5EE T: 0207 0919620 F: 0207 0917340 E: info@skillscfa.org www.skillscfa.org Skills

More information

A Guide to the Cyber Essentials Scheme

A Guide to the Cyber Essentials Scheme A Guide to the Cyber Essentials Scheme Published by: CREST Tel: 0845 686-5542 Email: admin@crest-approved.org Web: http://www.crest-approved.org/ Principal Author Jane Frankland, Managing Director, Jane

More information

ESKITP6033 IT Disaster Recovery Level 3 Role

ESKITP6033 IT Disaster Recovery Level 3 Role Overview This sub-discipline is about the competencies required in order to manage all aspect of Disaster Recovery (DR), as it applies to IT within an. ESKITP6033 1 Performance criteria You must be able

More information

COSCSMO10 - SQA Unit Code FM1W 04 Implement strategic sourcing partnerships

COSCSMO10 - SQA Unit Code FM1W 04 Implement strategic sourcing partnerships Overview This Unit is about identifying and agreeing with the stakeholders what systems are most effective for managing the project. The systems identified will need to be prioritised and formalised if

More information

Avondale College Limited Enterprise Risk Management Framework 2014 2017

Avondale College Limited Enterprise Risk Management Framework 2014 2017 Avondale College Limited Enterprise Risk Management Framework 2014 2017 President s message Risk management is part of our daily life, something we do regularly; often without realising we are doing it.

More information

White Paper. PPP Governance

White Paper. PPP Governance PPP Governance The Governance of Projects, Programs and Portfolios (PPP) (sometimes called project governance for convenience) is the sub-set of corporate and organisational governance 1 focused on assisting

More information

Release: 1. AHCBUS604A Design and manage the enterprise quality management system

Release: 1. AHCBUS604A Design and manage the enterprise quality management system Release: 1 AHCBUS604A Design and manage the enterprise quality management system AHCBUS604A Design and manage the enterprise quality management system Modification History Not Applicable Unit Descriptor

More information

Think Resource Manchester Business School MBA Summer Internships

Think Resource Manchester Business School MBA Summer Internships Think Resource Manchester Business School MBA Summer Internships Original Thinking Applied Think Resource MBA Summer Internships and Projects Could your business benefit from new insights? MBA Internships

More information

Release: 1. BSBMKG526 Develop strategies to monetise digital engagement

Release: 1. BSBMKG526 Develop strategies to monetise digital engagement Release: 1 BSBMKG526 Develop strategies to monetise digital engagement BSBMKG526 Develop strategies to monetise digital engagement Modification History Release Release 1 Comments This version first released

More information

Council Policy Business Continuity Management

Council Policy Business Continuity Management Policy Name: Business Continuity Management Council Policy Business Continuity Management ADOPTED BY COUNCIL: 19 th April 2016 DATE OF NEXT REVIEW: 18 th April 2020 RESPONSIBLE OFFICER: REFERENCES: Chief

More information

The Data Integration Strategy

The Data Integration Strategy White Paper The Data Integration Strategy Take Aim Before You Shoot Introduction Much has been written about the need to align business and technology, but that alignment has to begin up front. In fact,

More information

SFS SYS 13 (SQA Unit Code - H4GR 04) Maintain the performance of electronic security systems

SFS SYS 13 (SQA Unit Code - H4GR 04) Maintain the performance of electronic security systems Maintain the performance of electronic security systems Overview This NOS sets out the skills, knowledge and understanding for you to maintain the operational performance of electronic security systems,

More information

Role Description Service Catalogue Specialist

Role Description Service Catalogue Specialist Role Description Service Catalogue Specialist Cluster Agency Division/Branch/Unit Location Transport Transport for NSW People and Corporate Services/Group Information Technology Sydney Classification/Grade/Band

More information

Programme Manager Relationship Management System

Programme Manager Relationship Management System Programme Manager Relationship Management System Russam Ref 4573 Job Profile This document is a generic description for the role. Any specific requirements in the published advert should also be taken

More information

When Recognition Matters WHITEPAPER ISO GUIDANCE ON PROJECT MANAGEMENT.

When Recognition Matters WHITEPAPER ISO GUIDANCE ON PROJECT MANAGEMENT. When Recognition Matters WHITEPAPER ISO 21500 GUIDANCE ON PROJECT MANAGEMENT www.pecb.com CONTENT 3 4 4 7 8 8 Introduction An Overview of ISO 21500:2012 Key Clauses of ISO 21500:2012 Link between ISO 21500

More information

Executive Director - Corporate Services

Executive Director - Corporate Services Job details Job title: Executive Director - Corporate Services Responsible to: Chief Executive Responsible for: Director of Finance, Director of Human Resources, Director of Business Assurance and Director

More information

Ambulance Victoria Position Description

Ambulance Victoria Position Description Ambulance Victoria Position Description Position Title: Organisational Development Consultant Reports To: Senior Organisational Development Consultant / Manager Organisational Development (as applicable)

More information

Human Resources and Organisational Development. Job No. (Office Use)

Human Resources and Organisational Development. Job No. (Office Use) ROLE PROFILE Human Resources and Organisational Development Role Profile Job Title Head of Business and Technical Architecture Job No. (Office Use) F27 Grade (Office Use) Directorate Transformation and

More information

Information governance strategy 2014-16

Information governance strategy 2014-16 Information Commissioner s Office Information governance strategy 2014-16 Page 1 of 16 Contents 1.0 Executive summary 2.0 Introduction 3.0 ICO s corporate plan 2014-17 4.0 Regulatory environment 5.0 Scope

More information

Risk Management Policy

Risk Management Policy Risk Management Policy Risk Management Policy Record Number D14/79827 Responsible Manager Manager Strategy and Governance Last reviewed 10 March 2015 Adoption reference Council Resolution number 90.5 Previous

More information

April 2015 Issue No:1.0. Application Guidance - CCP Security and Information Risk Advisor Role, Practitioner Level

April 2015 Issue No:1.0. Application Guidance - CCP Security and Information Risk Advisor Role, Practitioner Level April 2015 Issue No:1.0 Application Guidance - CCP Security and Information Risk Advisor Role, Practitioner Level Application Guidance CCP Security and Information Risk Advisor Role, Practitioner Level

More information

Risk Management & Business Continuity Manual 2011-2014

Risk Management & Business Continuity Manual 2011-2014 ANNEX C Risk Management & Business Continuity Manual 2011-2014 Produced by the Risk Produced and by the Business Risk and Business Continuity Continuity Team Team February 2011 April 2011 Draft V.10 Page

More information

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS 1 Module 1: Principles of Risk and Risk Management Module aims The aim of this module is to provide an introduction to the principles and concepts of risk and

More information

MANAGER, HUMAN RESOURCES CONSULTING JOB & PERSON SPECIFICATION NOVEMBER 2010

MANAGER, HUMAN RESOURCES CONSULTING JOB & PERSON SPECIFICATION NOVEMBER 2010 MANAGER, HUMAN RESOURCES CONSULTING JOB & PERSON SPECIFICATION NOVEMBER 2010 POSITION TITLE Position Title: Manager HR Consulting Position Number: 3520 Faculty/Division: Division of Services and Resources

More information

FINPP07 Support the ongoing client relationship

FINPP07 Support the ongoing client relationship Overview This unit is for those who provide paraplanning services to financial planners in the delivery of bespoke solutions to clients as part of the financial advice process. You must be able to support

More information

Job description HR Advisor

Job description HR Advisor Job description HR Advisor Main purpose of job To work closely with colleagues in the HR Business Partner team along with the wider PDO directorate to ensure delivery of a first class, professional and

More information

JOB PROFILE. Collaborate and work effectively with team members within the section and the rest of the Transformation Service.

JOB PROFILE. Collaborate and work effectively with team members within the section and the rest of the Transformation Service. JOB PROFILE Job Title: Principal Commissioning Officer Consultant 3 Department: Corporate Resources Ref: DCC/14/0344 Section: Transformation Service Job Family: Transformation Job grade: 12 Purpose of

More information

International Diploma in Risk Management Syllabus

International Diploma in Risk Management Syllabus International Diploma in Risk Management Syllabus Module 1: Principles of Risk and Risk Management The aim of this module is to provide an introduction to the principles and concepts of risk and risk management.

More information

PUBLIC HEALTH WALES NHS TRUST CHIEF EXECUTIVE JOB DESCRIPTION

PUBLIC HEALTH WALES NHS TRUST CHIEF EXECUTIVE JOB DESCRIPTION PUBLIC HEALTH WALES NHS TRUST CHIEF EXECUTIVE JOB DESCRIPTION Post Title: Accountable to: Chief Executive and Accountable Officer for Public Health Wales NHS Trust Trust Chairman and Board for the management

More information

PORTFOLIO, PROGRAMME & PROJECT MANAGEMENT MATURITY MODEL (P3M3)

PORTFOLIO, PROGRAMME & PROJECT MANAGEMENT MATURITY MODEL (P3M3) PORTFOLIO, PROGRAMME & PROJECT MANAGEMENT MATURITY MODEL (P3M3) 1st February 2006 Version 1.0 1 P3M3 Version 1.0 The OGC logo is a Registered Trade Mark of the Office of Government Commerce This is a Value

More information

Guideline. Records Management Strategy. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.0. Issue Date: 19/07/2010

Guideline. Records Management Strategy. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.0. Issue Date: 19/07/2010 Public Record Office Victoria PROS 10/10 Strategic Management Guideline 5 Records Management Strategy Version Number: 1.0 Issue Date: 19/07/2010 Expiry Date: 19/07/2015 State of Victoria 2010 Version 1.0

More information

JOB TITLE: JIG TECHNICAL MANAGER JOB PURPOSE:

JOB TITLE: JIG TECHNICAL MANAGER JOB PURPOSE: 1 JOB TITLE: JIG TECHNICAL MANAGER REPORTS TO: General Manager, JIG JOB PURPOSE: The Technical Manager role supports all the technical elements of JIG Committee work. Additionally, the Technical Manager

More information

Service Management and ICT Monitoring and Reporting Advisory and Implementation Services

Service Management and ICT Monitoring and Reporting Advisory and Implementation Services Service Management and ICT Monitoring and Reporting Advisory and Implementation Services G-Cloud Service 1 1. An overview of the G-Cloud Service Arcus can assist you with a review and advice on the effectiveness

More information

People Strategy 2013/17

People Strategy 2013/17 D a t a L a b e l : P U B L I C West Lothian Council People Strategy 2013/17 Contents 1 Overview 2 2 Council Priorities 8 3 Strategy Outcomes 10 1 Engaging and motivating our employees 13 2 Recognised

More information

Job Description. Data Acquisition and Processing Manager Band 8b

Job Description. Data Acquisition and Processing Manager Band 8b Job Description Data Acquisition and Processing Manager Band 8b Job Title: Team / Directorate: Band: Responsible to: Accountable to: Data Acquisition and Processing Manager Commissioning Intelligence,

More information

CAPABILITY MATURITY MODEL & ASSESSMENT

CAPABILITY MATURITY MODEL & ASSESSMENT ENTERPRISE DATA GOVERNANCE CAPABILITY MATURITY MODEL & ASSESSMENT www.datalynx.com.au Data Governance Data governance is a key mechanism for establishing control of corporate data assets and enhancing

More information

Business Continuity Management

Business Continuity Management Business Continuity Management Policy Statement & Strategy July 2009 Basildon District Council Business Continuity Management Policy Statement The Council is committed to ensuring robust and effective

More information

Seamus Reilly Director EY Information Security sreilly@uk.ey.com 0207 951 3179 Cyber Security

Seamus Reilly Director EY Information Security sreilly@uk.ey.com 0207 951 3179 Cyber Security Seamus Reilly Director EY Information Security sreilly@uk.ey.com 0207 951 3179 Cyber Security An Internal Audit perspective on the threats and responses within the Retail Sector 15 th May 2014 Agenda Introductions

More information