Workshop IT Star IT Security Professional Positioning and Monitoring: e-cfplus support

Similar documents
EUROPEAN ICT PROFESSIONAL ROLE PROFILES VERSION 2 CWA 16458:2018 LOGFILE

Towards a European e-competence Framework

Fostering Competitiveness, Growth and Jobs. Wrocław, Poland, 15 October 2014

Closing the Skills Gap with Real-world IT and Business Skills

COURSE BROCHURE CISA TRAINING

DESCRIBING, DEVELOPING & CERTIFYING DIGITAL COMPETENCE

CISA Training.

CEPIS Survey of Professional e-competence in Europe

INDEX ABOUT US 3 ARAB CERTIFIED QUALITY MANAGER PROGRAM. Body of Knowledge 6 UNESCO ICT INDICATORS 8 MESSAGE FROM THE CHAIRM AN

2 nd EQAVET Forum. Adult Trainers of non formal education Certification of Competence Quality Assurance features

PRIOR LEARNING ASSESSMENT AND RECOGNITION (PLAR)

KENYA SCHOOL OF GOVERNMENT EMPLOYMENT OPORTUNITY (EXTERNAL ADVERTISEMENT)

Qualification Specification for the Knowledge Modules that form part of the BCS Level 4 Software Developer Apprenticeship

D3.1 Validation workshops Workplan v.0

Project Management Professional (PMP) Certificate

PROTERRA CERTIFICATION PROTOCOL V2.2

Professional certification from BCS, The Chartered Institute for IT. bcs.org/certification

Digital Service Management (DSM)

ICT Mentors e-learning portfolio provides our delegates with materials for study at the comfort of their homes, work place etc.

American Society for Quality

National Open Source Strategy

Stakeholders are key to Kyvyt, which is a tool largely based on informal LMI offered by its end-users/students.

CATALOG 2017/2018 BINUS UNIVERSITY. Cyber Security. Introduction. Vision. Mission

Build Your Cybersecurity Team: Create a Strong Cybersecurity Workforce Using Best Practices in Development

Commercial Catalog & Pricelist. Effective Date: January 1, 2019

An Overview of ISO/IEC family of Information Security Management System Standards

Security and Privacy Governance Program Guidelines

ANZSCO Descriptions The following list contains example descriptions of ICT units and employment duties for each nominated occupation ANZSCO code. And

building for my Future 2013 Certification

CEPIS Survey of Professional e-competence in Europe

CAPM TRAINING EXAM PREPARATION TRAINING

Business Advantage Through Structured Skills Development

e-competence in Europe Analysing Gaps and Mismatches for a Stronger ICT Profession European Report

ITIL Intermediate Service Design (SD) Certification Boot Camp - Brochure

Department of Management Services REQUEST FOR INFORMATION

What is ISO/IEC 27001?

Position Description. Engagement Manager UNCLASSIFIED. Outreach & Engagement Information Assurance and Cyber Security Directorate.

ISO9001:2015 LEAD IMPLEMENTER & LEAD AUDITOR

Certified Manager Certification

php/belgium-flemish- Community:National_Qualifications_Framework

LL-C (Certification) Services Overview

UNITED NATIONS DEVELOPMENT PROGRAMME TERMS OF REFERENCE

British Columbia International Academy

Well Trained People, Better Served Customer. Silver Learning

APMP Certification. Webinar presentation by: Mark Wigginton Regional Director, Shipley Associates September 11, 2013

Solutions Technology, Inc. (STI) Corporate Capability Brief

ROLE DESCRIPTION IT SPECIALIST

for TOGAF Practitioners Hands-on training to deliver an Architecture Project using the TOGAF Architecture Development Method

POSITION DESCRIPTION

Systems Administrator / Systems Analyst

ILNAS/PSCQ/Pr004 Qualification of technical assessors

Digital Service Management (DSM)

CAPABILITY STATEMENT

PROJECT MANAGEMENT PROFESSIONAL (PMP)

BUILD YOUR CYBERSECURITY SKILLS WITH TRASYS INTERNATIONAL

What Makes PMI Certifications Stand Apart?

Which Side Are You On?

Association for International PMOs. Expert. Practitioner. Foundation PMO. Learning.

CEF e-invoicing. Presentation to the European Multi- Stakeholder Forum on e-invoicing. DIGIT Directorate-General for Informatics.

SABSA. Title / definition. Type. Owner. Brief history and description SHERWOOD APPLIED BUSINESS SECURITY ARCHITECTURE (SABSA )

EPICK your GRC platform MAIN REFERENCES. EPICK REFERENCES EN Pag. 1/6

Opportunities for the young and graduates employability in Vietnam. VOYAGE Platform Instructions for Use Student Area

This document is a preview generated by EVS

ISSP Sustainability Professional Certifications UPDATE: November 20, 2017

Trend Micro Professional Services Partner Program

UK Permanent Salary Index November 2013 Based on registered vacancies and actual placements

Reference Framework for the FERMA Certification Programme

The National Initiative for Cybersecurity Education (NICE) The NICE Workforce Framework, NIST SP , Overview October 4, 2017

TQUK Level 3 Diploma in Design Engineer Construct! The Digital Built Environment (RQF) Purpose Statement Qualification Number: 603/1993/8

ITIL 2011 Foundation Certification Training - Brochure

EC-Council Certified Incident Handler v2. Prepare to Handle and Respond to Security Incidents EC-COUNCIL CERTIFIED INCIDENT HANDLER 1

Prof.Dr. Sotiraq Dhamo Doc. Julian Naqellari The University of Tirana Accounting Department

CLOUD GOVERNANCE SPECIALIST Certification

Benefits of Accredited Conformity Assessment and the Supply Chain

DXC Security Training

Security and resilience in Information Society: the European approach

BRING EXPERT TRAINING TO YOUR WORKPLACE.

DISCUSSION PAPER. Board of Certification Oral Examination Consistency

Cybersecurity for ALL

New CEPIS Mission

PIPELINE Program Competency Model for Informa on Technology Strategic Planning/Business Management Career Cluster Pathway

SFO Certification Program

Strategic Security Analyst

EOQ personal certificates

Rules and Process Steps for Certification of Training Organisations and Trainers. Certification Logo

Hong Kong CPIT Professional Certification

Qualification Specification for the Knowledge Modules that form part of the BCS Level 3 Infrastructure Technician Apprenticeship

IT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)

Chartered Membership: Professional Standards Framework

Prosci Change Management Certification Program. learn and Change

The National Qualifications System Instruments to support Qualification and Lifelong Learning

Certified in Risk and Information Systems ControlTM Certification Training - Brochure

PECB UNIVERSITY PECB UNIVERSITY

Plan Your International Career in Digital Marketing with Our Guidance

CERTIFIED IN THE GOVERNANCE OF ENTERPRISE IT CGEIT AFFIRM YOUR STRATEGIC VALUE AND CAREER SUCCESS

Managing Projects Using PMI s Standards facilitated by: Mr. Andreas Solomou

CISM - Certified Information Security Manager. Course Outline. CISM - Certified Information Security Manager.

Building the qualifications pillar Pedro Chaves- DG Employment Spyros Papaioannou- EOPPEP Elvira Raquel Silva- EWF Izabela Milewska- AWS

AACE Certification Background, Overview and Process Rocky Mountain Section September 22, Ken Cressman EVP PMP CCP Robert Van Gundy PMP PSP EVP

CURRICULUM VITAE. Central European University, Graduate School of Business - Budapest Hungary From To September 2002 December 2003

Transcription:

Workshop IT Star 2016 IT Security Professional Positioning and Monitoring: e-cfplus support Roberto Bellini AICA-Milan October, 28 th 2016

agenda 1. e-cf standard and the enriched e-cfplus System 2. IT Security Profiles, enriched version 3. Professional Positioning and Qualification 1

Norms and Institutions for certification s governance Recent changes in the Italian Norms system Lex DL.4/13, recognize new Associations, for instance those of ICT Specialists Lex 13/13 established the National Certification System Standardization Italy: UNI published the Norm 11506 in September 2013 based on e-cf Europe: CEN published the Norm EN 16234, as valid for all european Countries Italian Institutions involved in certifications ACCREDIA, recognize Certification Bodies MISE: Ministry of Economic Development, Association Register Professional Associations Enterprise Associations, launched the Digital Competencies Observatory

e-cf 3.0 Dimension 1: 5 e-cf areas Dimension 2: 40 competencies Dimension 3: 5 e-cf levels Dimension 4: knowledge & skills examples

e-cf 3.0 characteristics e-cf is a public framework Is supported by EC (CEN) Quality assured Neutrality assured

e-cf 2.0

CWA 16458

A shared European language to close the e-skills gap ICT demand ICT supply multinational s SME s educational institutions higher education private certification providers professional associations social partners individuals Higher Education Curricula National frameworks Job posting & Recruitment Skills gap analysis ICT Professional CV Self promotion.. e-cf use by the ICT sector Use e-cf content Create e-cf links Market scenarios Certification programs HR planning Make or buy policies Competence assessment Individual training plans Multi-stakeholder user community from all kind of market perspectives

agenda 1. e-cf standard and the enriched e-cfplus System 2. IT Security Profiles, enriched version 3. Professional Positioning and Qualification 8

On the basis of what is offered by the public skills framework e-cf and based on the EUCIP experience, AICA has built An enriched professional system, with an higher granularity Operational tools for managing skills and profiles of ICT specialists The qualification and certification paths 9

e-cfplus System Objectives Specify an ICT enriched competence and profiles portfolio to satisfy following requirements Compliancy with Italian Technical UNI Norm 11506 and EN 16234 on e-cf and associated European Professional Profiles Sustain the convergens of schools and universities towards a competence and profile system accomplishing ICT discipline and labour market requirements (ecf compliant with EQF) Allow to implement and deploy services to manage those competencies and profiles including their certification 10

e-cfplus characteristics e-cfplus adds the value of detailed and structured knowledge and operational skills, provides well known methods and web tools to manage the assets of business skills in a simple and effective way. e-cfplus can also adapt and customize the entire system to the specific characteristics of the organization. e-cfplus enriches the 40 e-cf skills with more than 2,200 building blocks grouped into 157 homogeneous sets of knowledge items and skills; these elementary components enrich the 23 CEN profiles, that can be defined by each organization, with the possible methodological support of AICA e-cfplus can be used in any organization e-cfplus helps professionals understand their position in an organization, see where they can grow, and what they need to advance in their careers. For organizations, e-cfplus helps ICT managers and Human Resources to identify and clearly define the professional development of their employees, and to plan effective training and development activities.

Profile title ICT SECURITY SPECIALIST (12) Summary Statement Ensures the implementation of the organizations security policy. Mission Proposes and implements necessary security updates. Advises, supports, informs and provides training and security awareness. Takes direct action on all or part of a network or system. Is recognized as the ICT technical security expert by peers. Deliverables Accountable Responsible Contributor Knowledge or New technology Risk Management Information integration proposal policy base (Security) (Security) Risk Management Plan Information security policy e-cfplus-european ICT Professional Profiles ICT Security Specialist Main task/s Ensure security and appropriate use of ICT resources Evaluate risks, threats and consequences Provide security training and education Provide technical validation of security tools Contribute to definition of security standards Audit security vulnerability Monitor security developments to ensure data and physical security of the ICT resources e-competences (e-cf) Sets of skills/knowledge (e-cfplus) KPI area C.2 Change Support Level 3 C.3 Service Delivery Level 3 D.9 Personnel Development Level 3 D.10. Information and Knowledge Management Level 3 E.8 Information Security Management Level 3-4 C.2.: ICT Change Management C.3.: Service Delivery Management D.9.: Professional Development D.10.: Information and Knowledge Analysis E.8.: Information Security System Management, Data Protection Management, Access-Control Policies, Models and Mechanisms, Database Security, Operating Systems Security, Network Security and Attack Prevention, Wireless Security, Web Application Security, ICT Security Assurance Security measures in place 12

Profile title ICT SECURITY MANAGER (11) Summary Statement Manages the Information System security policy. Mission Defines the Information System security policy. Manages security deployment across all Information Systems. Ensures the provision of information availability. Recognized as the ICT security policy expert by internal and external stakeholders. Deliverables Accountable Responsible Contributor Information security policy Knowledge or Information base Information security strategy Risk Management policy New technology integration proposal ICT Strategy & implementation e-cfplus-european ICT Professional Profiles ICT Security Manager Main task/s Define and implement procedures linked to IS security Contribute to the development of the organization s security policy Establish the prevention plan Inform and raise awareness among general management Ensure the promotion of the IT security charter among users Inspect and ensure that principles and rules for IS security are applied e-competences (e-cf) Sets of skills/knowledge (e-cfplus) KPI area A.7. Technology Trend Monitoring Level 4 D.1. Information Security Strategy Development Level 5 E.3. Risk Management Level 3 E.8. Information Security Management Level 4 E.9. IS Governance Level 4 A.7.: Technology Watching D.1.: Information Security Policy, Business Risk and ICT Security, Business Continuity Planning E.3.: ICT Risk Policy E.8.: Information Security System Management, Data Protection Management E.9.: IS Governance Security Policy effectiveness 13

e-cfplus: the tools e-cfplus provides well known methods and web tools to manage the assessment of assets, in terms of possessed individual and business skills; to be managed in a simple and effective way, allowing you to adapt and customize the entire system to each specific organization The main web tools provided to professionals and companies are the e-competence Benchmark and e-competence Management. e-competence Management is a system designed for enterprise use that provides a vision that is analytical and concise, accurate and customizable of the individual and organization skills; in particular it provides: standard individual reports; customized reports for individuals, departments, organizations, professional families, ; integration with leading systems of human resources management (SAP, Oracle, etc.); analysis of individual and organizational gaps related to the 23 CEN profiles, the 21 EUCIP profiles, and the profiles and functions defined by the organization; personalization of the standard skills model (elimination of irrelevant skills, for the company; adding specific business/sector expertise,...) methodological and operational support. 14

6 e-cfplus profiles families to be managed in the ICT professional system proposed by AICA e-cfplus profiles are e-cf compliant (generation 3) based on same competencies, but enriched with 157 set of 2.200 knowledge and skills upon AICA experience PLAN MANAGE-business management Business information manager + Chief Information Officer + ICT operation manager + PLAN-design Business analyst + Systema analyst + Enterprise architect + System architect + RUN-service&operations Data Base administrator + Service desk agent + System administrator + Network specialist + Technical specialist + MANAGE-technical management Quality assurance manager + ICT Security manager + ICT Project manager + Service manager + BUILD-development Developer + Digital media specialist + Test specialist + ENABLE-support ICT Consultant + Account Manager + ICT Trainer + ICT Security specialist +

agenda e-cfplus System 1. e-cf standard and the enriched e-cfplus System 2. IT Security Profiles, enriched version 3. Professional Positioning and Qualification 16

Professional path: positioning and monitoring Target: professionals, managers and ICT entrepreneurs, individually Objectives and results to specialists in the target: set up and find answers to questions What is the content of my work recognized today by the Italian labor market What would be my career guidance including consideration of employability in the Italian and European market How to get help to monitor the progress of the professional career and to gather information for the technical updating and systematic re-positioning in the labor market

The Professional monitoring & positioning path ICT Specialists would be positioned in respect of 6 professional families Business manager Technical manager Plan-design Build-development Run-service & operations Enable - support 10 Focused Training plan 1 registration/ objectives Qualified Training supplier 4 target profile & development 5 validation and measure through assessment e- CF based skill inventory, competencies & gaps 2 3 Proximity profile, level and positioning Qualification Certification and register Repository and Forum 6 7 8 9 Personal value

Assessment Tool Personal identification

Assessment Tool Questionnaire on Competencies

Assessment Tool Questionnaire on Proficiency levels

Professional Progression into an organization Employers Role Profiles 1 2 3 4 5 Practitioners self-assess against the e-cf Competences Proficiencies Inputs to Europass CV Support Plans for professional development 24

IT Security Specialist The professional path of the ICT Security specialist Path User Competencies Professional level IT Security Specialist profile positioning (upon e-cf) Exam tools ECDL IT Security (automatic exam) Entry Qualification 1: associate ICT Security Administrator ITA Security module (automatic exam) Level of professional Qualification Certification 2: professional 3 senior professional ICT Security Specialist ICT Security Specialist senior Self Assessment (e-cm) Accredited Assessor 4: lead ICT Security Integrator Written exam (Core) Self Assessment Real experience Portfolio 5 principal -- Exam commission

Requirements for Security Specialist qualification and certification seniority in the role of at least 36 months self - assessment ranking > 75% written exam oral exam with commission Otherwise QUALIFICATION as professional for ranking between 50 and 75%

peer-to-peer monitoring of competencies evolution Detailed Personal Report AICA Forum for ICT Professionals

Thanks for your attention r.bellini@aicanet.it www.aicanet.it 28

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback