Qualifications Framework - Education Bureau

1. Strategic Management (SM)

Strategic Management (SM) involves formulating ICT strategies to align with existing organization's objectives and suggesting new ICT strategies to increase organization's competitiveness. It may also involve adopting appropriate information and communication technologies and ideas in product development management and ICT management. This also includes developing and involving the ICT organization, people and process in support of the business strategy.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 5

Brand Management
Manage product/services brand through the use of IT	[PDF]	ITSWSM508A	4

Contingency Management
Manage contingency situations	[PDF]	ITSWSM505A	7

Human Resources and Staff Management [Generic Skills]
Recruit, retain and develop IT staff	[PDF]	ITSWGS521A	8

Information Management
Collect and distribute disseminate information	[PDF]	ITSWSM506A	2
Manage information life cycle	[PDF]	ITSWSM507A	3

IT Governance
Monitor the IT governance process	[PDF]	ITSWSM501A	3

IT Planning and Budgeting
Formulate IT business model	[PDF]	ITSWSM502A	4
Formulate IT plan	[PDF]	ITSWSM503A	4
Prepare a budget based on the IT plan	[PDF]	ITSWSM504A	6

Resources management [Generic Skills]
Utilize the given IT and related resources	[PDF]	ITSWGS520A	4

Risk management [Generic Skills]
Acquire and protect the copyrights and IP rights related to IT	[PDF]	ITSWGS523A	4

Level 6

Contingency Management
Develop business continuity plans and disaster recovery plans related to IT	[PDF]	ITSWSM609A	7

Financial Management [Generic Skills]
Establish a business case for an IT investment	[PDF]	ITSWGS617A	11

Human Resources and Staff Management [Generic Skills]
Develop and maintain succession plans for human resources related to IT	[PDF]	ITSWGS615A	8

Information Management
Transform information into business knowledge and value	[PDF]	ITSWSM610A	2
Set policy to control data security and privacy	[PDF]	ITSWSM611A	4

IT Consulting and Champion
Identify and evaluate information technologies that support the objectives of an organisation	[PDF]	ITSWSM612A	2
Select appropriate information technologies for business purposes	[PDF]	ITSWSM613A	1
Understand Systems Development Life Cycle (SDLC) and software development process	[PDF]	ITSWGS619A	4
Understand IT operations and IT processing	[PDF]	ITSWGS620A	4
Understand IT project management	[PDF]	ITSWGS621A	4
Understand organisational and project quality assurance	[PDF]	ITSWGS622A	3
Adopt and adapt international standards concerning information security as appropriate	[PDF]	ITSWGS623A	3
Comply with relevant laws and regulatory requirements	[PDF]	ITSWGS624A	1

IT Governance
Establish the IT governance framework and process	[PDF]	ITSWSM607A	4
Evaluate and review the execution of the approved IT plans	[PDF]	ITSWSM608A	4

Relationship Management [Generic Skills]
Manage and maintain the portfolio and relationship with business partners	[PDF]	ITSWGS618A	4

Resources management [Generic Skills]
Allocate and prioritize IT and related resources	[PDF]	ITSWGS614A	4

Risk Management [Generic Skills]
Identify and assess the risk factors related to IT	[PDF]	ITSWGS609A	4
Develop risk mitigation strategies and plans related to IT	[PDF]	ITSWGS610A	4
Review risk factors related to IT, and execute and monitor risk mitigation plans	[PDF]	ITSWGS611A	3

Strategic Execution and Review
Formulate relevant tactical plans based on the approved IT strategies and policies	[PDF]	ITSWSM604A	5
Execute, monitor and review the approved IT strategies and plans	[PDF]	ITSWSM605A	5
Evaluate the effectiveness of the execution of the approved IT plans	[PDF]	ITSWSM606A	5

Strategic Formulation
Formulate vision and mission statements	[PDF]	ITSWSM601A	3
Formulate the business strategies and policies	[PDF]	ITSWSM602A	4
Formulate IT strategies and policies	[PDF]	ITSWSM603A	4

2. Project Management (PM)

Project Management (PM) applies the knowledge, skills, tools and techniques to project activities to meet project requirements. It involves management of software projects and/or professional services so as to deliver quality products/services to stakeholders according to the project scope, schedule, cost, quality and any other agreed terms and conditions, and if necessary, to manage changes in an effective manner.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 4

Project Communications Management
Establish project communications documentation requirements	[PDF]	ITSWPM403A	2
Perform information distribution	[PDF]	ITSWPM404A	2
Implement project time reporting	[PDF]	ITSWPM405A	1
Communicate with stakeholders at project checkpoints	[PDF]	ITSWPM406A	2

Project Time Management
Prepare the project schedule	[PDF]	ITSWPM401A	1
Execute and manage the project schedule	[PDF]	ITSWPM402A	1

Level 5

Project Communications Management
Establish a preliminary project communications plan	[PDF]	ITSWPM515A	1
Develop a project communications plan	[PDF]	ITSWPM516A	2
Conduct project performance reporting	[PDF]	ITSWPM517A	2
Conduct project closure with respect to project communications	[PDF]	ITSWPM518A	2

Project Cost Management
Articulate the project costing requirements	[PDF]	ITSWPM506A	2
Execute and manage the project cost	[PDF]	ITSWPM507A	2
Monitor and control the project cost	[PDF]	ITSWPM508A	2

Project Human Resources Management
Define the organizational structure of a project	[PDF]	ITSWPM511A	3
Establish organizational plan	[PDF]	ITSWPM512A	3
Establish and develop the project team	[PDF]	ITSWPM513A	4
Manage project team	[PDF]	ITSWPM514A	2

Project Procurement and Contract Management
Conduct solicitation planning	[PDF]	ITSWPM521A	7
Conduct solicitation	[PDF]	ITSWPM522A	5
Conduct source selection and/or contract development	[PDF]	ITSWPM523A	5
Award Contract	[PDF]	ITSWPM524A	4
Conduct contract administration and contract monitoring	[PDF]	ITSWPM525A	5
Conduct contract closeout	[PDF]	ITSWPM526A	5

Project Quality Management
Manage the execution of a project quality management plan	[PDF]	ITSWPM509A	2
Monitor and control the project quality	[PDF]	ITSWPM510A	1

Project Risk Management
Execute the risk management and response plans	[PDF]	ITSWPM519A	2
Monitor and control the risks of a project	[PDF]	ITSWPM520A	2

Project Scope Management
Define project scope	[PDF]	ITSWPM501A	4
Execute and manage the project scope	[PDF]	ITSWPM502A	2

Project Time Management
Articulate the product-based planning as needed for time and effort requirements	[PDF]	ITSWPM503A	1
Monitor, control and update project schedule	[PDF]	ITSWPM504A	2
Conduct project closure with respect to time	[PDF]	ITSWPM505A	1

Level 6

Project Cost Management
Prepare a preliminary cost model	[PDF]	ITSWPM610A	2
Develop the project cost	[PDF]	ITSWPM611A	4
Conduct cost review upon project completion	[PDF]	ITSWPM612A	2

Project Human Resources Management
Conduct Project Closure with respect to project team	[PDF]	ITSWPM616A	2

Project Integration Management
Perform an initial project feasibility study	[PDF]	ITSWPM601A	2
Prepare a project charter and kick-off package as well as information	[PDF]	ITSWPM602A	1
Prepare initial project plan	[PDF]	ITSWPM603A	2
Execute the project plan	[PDF]	ITSWPM604A	1
Monitor and control project execution	[PDF]	ITSWPM605A	1
Conduct project closure with regard to integration	[PDF]	ITSWPM606A	1

Project Procurement and Contract Management
Establish preliminary procurement policies and procedures	[PDF]	ITSWPM621A	5
Conduct project procurement planning	[PDF]	ITSWPM622A	6

Project Quality Management
Determine quality policies and define quality requirements for a project	[PDF]	ITSWPM613A	3
Develop a project quality management plan for project execution	[PDF]	ITSWPM614A	4
Conduct project closure with regard to quality	[PDF]	ITSWPM615A	2

Project Risk Management
Establish a risk management approach and process for a project	[PDF]	ITSWPM617A	2
Develop a risk management plan	[PDF]	ITSWPM618A	2
Develop a risk response plan	[PDF]	ITSWPM619A	2
Conduct project closure with respect to project risk management	[PDF]	ITSWPM620A	1

Project Scope Management
Monitor and control the project scope	[PDF]	ITSWPM607A	2
Conduct project closure with regard to project scope	[PDF]	ITSWPM608A	3

Project Time Management
Develop a project schedule	[PDF]	ITSWPM609A	4

3. Architecture (AR)

Architecture (AR) refers to the knowledge and skills required for the activities and professional practices undertaken by its practitioners in the design of fundamental organization of a software system, embodied in its components and building blocks. It includes the various considerations given to the inter-relationship of these components and the environment under which they need to operate and function to meet their design goals. It also defines the sets of principles governing the evolution of these architecture components and the way by which they must be fitted together to serve the agreed system objectives.
The following are the core functions and knowledge areas in Software Architecture:
a. Architecture Framework and Vision
b. Business Architecture
c. Data Architecture
d. Technical Architecture
e. Network Architecture
f. Application Integration Architecture
g. Application Software Architecture
h. Embedded Software Architecture
i. Security Architecture (See Information Security functional area)

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 4

Application Software Architecture
Maintain a library of reusable application components	[PDF]	ITSWAR402A	1

Network Architecture
Document the abstracted layer design of the network architecture	[PDF]	ITSWAR401A	2

Level 5

Application Integration Architecture
Establish guidelines on adoption of application integration architecture	[PDF]	ITSWAR515A	1
Ensure operable application integration architecture is in place	[PDF]	ITSWAR516A	1
Manage application integration architecture life cycle	[PDF]	ITSWAR517A	1
Application Software Architecture
Understand key characteristics of various application software architecture models	[PDF]	ITSWAR518A	1
Develop application software architecture models	[PDF]	ITSWAR519A	2
Keep in-house practices in line with industry best practices	[PDF]	ITSWAR520A	2

Architecture Framework and Vision
Evaluate and select architecture design options and related architecture artefacts	[PDF]	ITSWAR501A	2
Review and make improvements to the relevant architecture development initiatives	[PDF]	ITSWAR502A	2
Define and develop various architecture design building blocks (components) for an organisation	[PDF]	ITSWAR503A	2

Business Architecture
Perform gap analysis of the current business architecture against the target business architecture	[PDF]	ITSWAR504A	5
Define metrics and methodologies to measure business performance of applying new technologies	[PDF]	ITSWAR505A	3
Promote and explain the new business architecture to stakeholders in an organisation	[PDF]	ITSWAR506A	2

Embedded Software Architecture
Understand key characteristics of embedded software systems	[PDF]	ITSWAR521A	2

Network Architecture
Define, review and validate network architecture principles	[PDF]	ITSWAR509A	2
Develop a network technology architecture model	[PDF]	ITSWAR510A	5
Perform gap analysis of the current network architecture against the business requirements	[PDF]	ITSWAR511A	3
Design and construction of network architecture	[PDF]	ITSWAR512A	3
Model and analyse network architecture	[PDF]	ITSWAR513A	3
Perform lifecycle management of the network architecture	[PDF]	ITSWAR514A	3

Technology Architecture
Model technology architecture	[PDF]	ITSWAR507A	4
Define metrics to ensure that a technology architecture meets the business goals	[PDF]	ITSWAR508A	3

Level 6

Application Integration Architecture
Recommend application integration architecture models	[PDF]	ITSWAR617A	2
Develop application integration architecture resources	[PDF]	ITSWAR618A	2

Architecture Framework and Vision
Define, prioritise and document architecture vision and principles for an organisation	[PDF]	ITSWAR601A	4
Advocate and explain the adopted architecture design methodology to stakeholders	[PDF]	ITSWAR602A	2
Establish processes to monitor the adopted architecture principles, design guidelines and resultant designs	[PDF]	ITSWAR603A	2
Establish processes to manage the implementation of adopted architecture designs	[PDF]	ITSWAR604A	2

Business Architecture
Review the current baseline and develop a target business architecture for an organisation	[PDF]	ITSWAR605A	5
Capture, analyse and model various viewpoints of a business architecture	[PDF]	ITSWAR606A	5
Review, design and re-engineer business processes to form a new business architecture	[PDF]	ITSWAR607A	3

Data Architecture
Define data management policies and architecture principles	[PDF]	ITSWAR608A	3
Build a data architecture registry	[PDF]	ITSWAR609A	6
Define and establish a data architecture	[PDF]	ITSWAR610A	3
Construct a data architecture for an information system	[PDF]	ITSWAR611A	5
Check usability of a target data architecture	[PDF]	ITSWAR612A	5
Enforce compliance of the enterprise data standards	[PDF]	ITSWAR613A	3

Embedded Software Architecture
Recommend embedded software architecture models	[PDF]	ITSWAR619A	6
Determine technology mix for the design and development of embedded software systems	[PDF]	ITSWAR620A	3
Decompose embedded software system model into manageable layers	[PDF]	ITSWAR621A	6
Maintain a common library of reusable embedded software components	[PDF]	ITSWAR622A	6
Exercise lifecycle management on the adopted embedded software architecture	[PDF]	ITSWAR623A	5

Technology Architecture
Define, review and document a technology architecture baseline	[PDF]	ITSWAR614A	5
Build, evaluate and review a target technology architecture reference model	[PDF]	ITSWAR615A	5
Manage technology architecture life cycle	[PDF]	ITSWAR616A	3

4. Information Security (IS)

Information Security (IS) refers to the protection of information from a wide range of threats in order to ensure business continuity, minimize business risk, and maximize return on investments and business opportunities. It involves providing advice and counsel to senior management to establish information security requirements and appropriate corporate-wide policies as well as managing the execution of information security programs within an organization.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 4

Risk Management
Report significant changes in risks	[PDF]	ITSWIS401A	1

Information Security Governance
Ensure information security procedures and guidelines support information security policies	[PDF]	ITSWIS402A	2

Information Security Programme Management
Maintain plans to implement information security governance framework	[PDF]	ITSWIS403A	3
Support and implement information security practices and procedures	[PDF]	ITSWIS404A	2
Implement information security awareness programme	[PDF]	ITSWIS405A	2

Response Management
Conduct drills according to response and recovery plans	[PDF]	ITSWIS406A	2

Level 5

Business Continuity Planning
Establish a business continuity planning strategy	[PDF]	ITSWIS519A	2
Prepare full set of business continuity planning documentation	[PDF]	ITSWIS520A	2
Conduct drill test on business continuity planning	[PDF]	ITSWIS521A	4
Provide awareness training program to staff dealing with business continuity planning	[PDF]	ITSWIS522A	2

Forensics
Provide advice on computer forensics	[PDF]	ITSWIS515A	3
Manage computer forensics evidence	[PDF]	ITSWIS516A	3
Investigate an information security case	[PDF]	ITSWIS517A	5
Prepare and present forensics investigation report	[PDF]	ITSWIS518A	3

Information Security Governance
Establish reporting and communication channels	[PDF]	ITSWIS502A	2
Maintain information security policies	[PDF]	ITSWIS523A	2

Information Security Management
Develop information security practices and procedures	[PDF]	ITSWIS506A	2
Evaluate and assess effectiveness of corporate information security practices	[PDF]	ITSWIS507A	3
Ensure availability, integrity and confidentiality of information systems	[PDF]	ITSWIS508A	2
Develop information security awareness programme	[PDF]	ITSWIS509A	2

Information Security Programme Management
Develop methods to satisfy information security policy requirements	[PDF]	ITSWIS505A	4
Promote accountability in managing information security risks	[PDF]	ITSWIS524A	3
Minimize information security risks	[PDF]	ITSWIS525A	3

Information System Audit
Enact information system security audit plan	[PDF]	ITSWIS513A	3
Prepare and deliver information system security audit report	[PDF]	ITSWIS514A	4
Evaluate and follow up on the recommendations in the information system security audit report	[PDF]	ITSWIS526A	4

Response Management
Manage the execution of response and recovery plans	[PDF]	ITSWIS511A	3
Establish procedures for documenting security incident	[PDF]	ITSWIS512A	2

Risk Management
Ensure risk management related activities are integrated into life cycle processes	[PDF]	ITSWIS503A	1
Define strategies and prioritize options to mitigate risk	[PDF]	ITSWIS504A	2

Level 6

Business Continuity Planning
Plan and maintain business continuity solutions	[PDF]	ITSWIS620A	4

Crisis Management
Facilitate cross functional teams for crisis management	[PDF]	ITSWIS616A	1
Prepare a crisis management plan and perform life cycle management of the plan	[PDF]	ITSWIS617A	3

Information Security Governance
Establish and maintain information security policies	[PDF]	ITSWIS601A	4
Develop a business case and perform an enterprise value analysis	[PDF]	ITSWIS603A	3
Develop information security strategy and obtain management buy-in	[PDF]	ITSWIS621A	2

Information Security Management
Develop, propose and promulgate an enterprise’s information security policies	[PDF]	ITSWIS611A	4
Establish corporate information security standards	[PDF]	ITSWIS612A	2

Information Security Programme Management
Create and maintain plans to implement information security governance framework	[PDF]	ITSWIS606A	4
Integrate information security programme requirements into an enterprise’s life cycle activities	[PDF]	ITSWIS607A	4
Establish metrics to manage information security governance framework	[PDF]	ITSWIS609A	4

Information System Audit
Develop an information system security audit plan	[PDF]	ITSWIS618A	4

Response Management
Devise processes for detecting, identifying and analysing security incident	[PDF]	ITSWIS613A	2
Develop response and recovery plans	[PDF]	ITSWIS614A	3
Manage post-event reviews	[PDF]	ITSWIS615A	3

Risk Management
Develop a risk management process	[PDF]	ITSWIS604A	3
Identify and evaluate risks	[PDF]	ITSWIS605A	2

5. Design, Development, and Maintenance (DM)

Design, Development, and Maintenance (DM) refers to the design, development and maintenance of appropriate software applications for stakeholders. It is considered as the traditional core activities in the software lifecycle from gathering requirements, proposing design solutions, developing program modules, and maintaining software operations when the software is in production.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 4

Software Decommissioning
Identify components that need to be managed in software decommissioning	[PDF]	ITSWDM406A	1
Verify and validate the remaining software are functioning properly	[PDF]	ITSWDM407A	1

Software Deployment and Migration
Verify and validate the deployed / migrated software and the existing software are functioning properly	[PDF]	ITSWDM405A	1

Software Quality Assurance
Perform testing activities to facilitate different levels of testing	[PDF]	ITSWDM401A	2
Report discrepancies between software and its related documents	[PDF]	ITSWDM402A	1
Debug a program	[PDF]	ITSWDM403A	1
Perform software audit	[PDF]	ITSWDM404A	1

Level 5

Requirements
Formulate, analyse, and develop requirements for the development of software products / services	[PDF]	ITSWDM501A	8
Verify and validate requirements for the development of the software product	[PDF]	ITSWDM502A	6

Software Decommissioning
Monitor the decommissioning plan and processes	[PDF]	ITSWDM511A	2

Software Deployment and Migration
Identify the Standard Operating Environment (SOE) and related issues for a software to be deployed/migrated	[PDF]	ITSWDM510A	2

Software Development (Programming) and Related Activities
Develop program modules of the software based on its design documents	[PDF]	ITSWDM504A	6
Manage and maintain the program source	[PDF]	ITSWDM505A	2

Software Maintenance
Identify extra functional requirements of an existing software	[PDF]	ITSWDM508A	1
Identify extra non-functional requirements of an existing software	[PDF]	ITSWDM509A	1

Software Quality Assurance
Perform inspection for the program code and software documents	[PDF]	ITSWDM506A	2
Develop test plans for various levels of testing	[PDF]	ITSWDM507A	2

Software/Systems Design
Verify and validate the relevant design documentations of the software/system	[PDF]	ITSWDM503A	1

Level 6

Software Configuration Management
Develop and implement the change control policy	[PDF]	ITSWDM604A	1
Develop and implement software configuration management plan	[PDF]	ITSWDM605A	1

Software Decommissioning
Define software decommissioning policy and plan	[PDF]	ITSWDM613A	4

Software Deployment and Migration
Perform risk assessment on software deployment and migration	[PDF]	ITSWDM610A	2
Define a software deployment / migration plan	[PDF]	ITSWDM611A	4
Monitor the deployment / migration process	[PDF]	ITSWDM612A	2

Software Releases & Control
Identify the requirements for software releases and control	[PDF]	ITSWDM606A	2
Perform risk assessment on software releases and control	[PDF]	ITSWDM607A	4
Define software releases and control plan	[PDF]	ITSWDM608A	4
Execute and monitor the software releases and control plan	[PDF]	ITSWDM609A	4

Software/Systems Design
Propose an architecture design (AD) of the software/system	[PDF]	ITSWDM601A	1
Propose a high level design (HLD) of the software	[PDF]	ITSWDM602A	1
Propose a detailed level design (DLD) of the software	[PDF]	ITSWDM603A	1

6. Operations and Support (OS)

Operations and Support (OS) refers to the operations and support of Software Products and Software Services (SW) branch in their day-to-day running. It covers the management and provision of operations and support services for all related ICT operation activities such as change management services, system/server operations, configuration management services, and disaster recovery services.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 2

Configuration Management Services
Perform stock-take of IT assets	[PDF]	ITSWOS201A	1

Level 3

Field Support Services
Deliver field support services	[PDF]	ITSWOS306A	3
Recover failed hardware and software components	[PDF]	ITSWOS307A	2
Apply technical changes and patches to the hardware and software components	[PDF]	ITSWOS308A	2

Help Desk Service
Deliver Help Desk services	[PDF]	ITSWOS301A	3
Maintain the help desk knowledge database	[PDF]	ITSWOS302A	4

Problem Management Service
Maintain the problem management knowledge database	[PDF]	ITSWOS303A	1

System Operations
Monitor and control the system operation services	[PDF]	ITSWOS304A	3
Deliver the system operations services	[PDF]	ITSWOS305A	2

Level 4

Availability Management Services
Deliver availability management services	[PDF]	ITSWOS406A	2

Change Management Services
Deliver the change management services	[PDF]	ITSWOS405A	3

Configuration Management Services
Deliver configuration management services	[PDF]	ITSWOS408A	1

Database Administration and Support
Deliver the database operations services	[PDF]	ITSWOS413A	14

Field Support Services
Analyse and fix the hardware and software failure	[PDF]	ITSWOS423A	2

IT Service Continuity Management
Ensure continuous operations of the computing environment	[PDF]	ITSWOS410A	3
Conduct tests and drills to support the Disaster Recovery Plan	[PDF]	ITSWOS411A	3

Problem Management Service
Deliver the problem management services	[PDF]	ITSWOS403A	1

Release Management Services
Deliver the release management services	[PDF]	ITSWOS407A	3
Monitor and control the release management services	[PDF]	ITSWOS419A	3

Security Management Services
Maintain the security control documents	[PDF]	ITSWOS418A	2

Service Level Management
Deliver service level management services	[PDF]	ITSWOS420A	3
Manage the day-to-day operations of service delivery	[PDF]	ITSWOS421A	3

System Operations
Establish and maintain the system operations process	[PDF]	ITSWOS422A	4

System Support Services
Deliver system support services	[PDF]	ITSWOS424A	6
Monitor and control system support services	[PDF]	ITSWOS425A	7

Level 5

Availability Management Services
Recommend availability improvement plans	[PDF]	ITSWOS505A	3
Monitor and control of the service level fulfilment	[PDF]	ITSWOS506A	3
Establish and maintain the availability management process	[PDF]	ITSWOS526A	3

Change Management Services
Maintain a change schedule	[PDF]	ITSWOS503A	2
Manage the day-to-day operation of a change management process	[PDF]	ITSWOS504A	2
Establish and maintain the change management process	[PDF]	ITSWOS525A	2

Configuration Management Services
Monitor and control of the configuration management services	[PDF]	ITSWOS511A	1

Database Administration and Support
Monitor and control of the database operations services	[PDF]	ITSWOS517A	8

Help Desk Service
Monitor and control of the higher severity service request	[PDF]	ITSWOS501A	4
Establish and maintain the help desk process	[PDF]	ITSWOS523A	3

IT Service Continuity Management
Monitor and control of the implementation of Disaster Recovery Plan	[PDF]	ITSWOS512A	2

Performance and Capacity Management Services
Deliver performance and capacity management service	[PDF]	ITSWOS508A	3
Prepare capacity upgrade plan	[PDF]	ITSWOS509A	3
Monitor and control of the performance and capacity management services	[PDF]	ITSWOS510A	3

Problem Management Service
Monitor and control of the problem management services	[PDF]	ITSWOS502A	2
Establish and maintain the problem management process	[PDF]	ITSWOS524A	2

Release Management Services
Establish and maintain the release management process	[PDF]	ITSWOS527A	4

Security Management Services
Deliver the security services for operations	[PDF]	ITSWOS521A	3
Define operational security protection processes	[PDF]	ITSWOS522A	2
Conduct operation security risk assessment and audit	[PDF]	ITSWOS530A	2

Service Level Management
Manage the service relationship with the customers and suppliers	[PDF]	ITSWOS514A	3

System Operations
Manage the exceptional system operations services	[PDF]	ITSWOS528A	3

System Support Services
Establish and maintain system support services process	[PDF]	ITSWOS529A	8

Level 6

Change Management Services
Manage the emergency change request	[PDF]	ITSWOS605A	2

Configuration Management Services
Establish and maintain configuration management process	[PDF]	ITSWOS610A	2

Database Administration and Support
Manage exceptional database operations process	[PDF]	ITSWOS615A	8
Establish and maintain database operations process	[PDF]	ITSWOS616A	14

Help Desk Service
Manage the highest severity incident request	[PDF]	ITSWOS601A	3

IT Service Continuity Management
Perform disaster impact assessment and mitigation	[PDF]	ITSWOS611A	3

Performance and Capacity Management Services
Establish and maintain the performance and capacity management processes	[PDF]	ITSWOS609A	4

Problem Management Service
Manage the exceptional problems	[PDF]	ITSWOS603A	2

Security Management Services
Conduct security investigation	[PDF]	ITSWOS619A	2

Service Level Management
Establish and maintain the service level management process	[PDF]	ITSWOS612A	3

System Support Services
Manage the complex system support services	[PDF]	ITSWOS617A	7

7. Quality Assurance (QA)

Quality Assurance (QA) refers to the knowledge and skills required for assuring the quality of the software products developed by the organizations and / or software services provided by them. The purpose of QA is to provide an independent evaluation of software products/services with respect to the adherence to the intended objectives, processes and standards. QA activities refer to those activities that are used to assure the quality of software products/services are of appropriate standards subject to the quality, scope, cost and time requirements/constraints of the project. QA activities fall into two categories, namely the organizational level QA and the project level QA. The organizational level QA governs the policies, standards, processes, procedures and work that have to be followed by all software products/services whereas the project level QA governs those that are specifically related to and, perhaps, catered for each individual software product/service.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 4

Product Level QA
Perform quality assurance (QA) activities of a software product	[PDF]	ITSWQA401A	2
Evaluate the quality of a software product	[PDF]	ITSWQA402A	2

Software QA
Perform testing activities to facilitate different levels of testing	[PDF]	ITSWDM401A	2
Report discrepancies between software and its related documents	[PDF]	ITSWDM402A	1
Debug a program	[PDF]	ITSWDM403A	1
Perform software audit	[PDF]	ITSWDM404A	1

Level 5

Organizational Level QA
Implement quality assurance (QA) policies and procedures	[PDF]	ITSWQA501A	4
Assist in quality assurance (QA) certification and international standards adoption	[PDF]	ITSWQA502A	4
Plan and execute organizational quality initiatives	[PDF]	ITSWQA503A	4
Plan and conduct training for quality assurance (QA) activities	[PDF]	ITSWQA504A	4

Product Level QA
Prepare quality assurance (QA) requirements of a software product	[PDF]	ITSWQA505A	2
Plan quality assurance (QA) activities of a software product	[PDF]	ITSWQA506A	3

Software Quality Assurance
Perform inspection for the program code and software documents	[PDF]	ITSWDM506A	2
Develop test plans for various levels of testing	[PDF]	ITSWDM507A	2

Level 6

QA Governance
Establish a quality assurance (QA) entity	[PDF]	ITSWQA601A	4
Formulate quality assurance (QA) policies and procedures	[PDF]	ITSWQA602A	4

Project Quality Management
Determine quality policies and define quality requirements for a project	[PDF]	ITSWPM613A	3
Develop a project quality management plan for project execution	[PDF]	ITSWPM614A	4
Conduct project closure with regard to quality	[PDF]	ITSWPM615A	2

8. Generic Skills (GS)

Generic Skills (GS) refer to the skills that are common to other functional areas. This involves soft skills like ethics, professionalism (e.g., lifelong learning, continuous professional development, and issues related to data privacy, copyright laws as well as intellectual property), communication skills (oral and written; English and Chinese – Cantonese and Putonghua), people and team skills, and management skills (both business and personal) and leadership skills.

Competency Matrix [PDF]

Integrated Competencies [PDF]

QF Level

Function/Name

Code

Credit

Level 4

Business Acumen
Manage operation based on existing environment and routines	[PDF]	ITSWGS401A	4

Communication Skills
Communicate (oral and written) information with team members and clients	[PDF]	ITSWGS402A	4
Listen to clients and team members effectively	[PDF]	ITSWGS403A	2
Present effectively to team members and clients	[PDF]	ITSWGS404A	2

Level 5

Business Acumen
Identify business opportunities	[PDF]	ITSWGS508A	3
Review and adjust business strategies and policies	[PDF]	ITSWGS524A	4

Business Ethics
Protect intellectual property rights and data privacy, and observe relevant laws	[PDF]	ITSWGS505A	4

Contract Management
Manage contract	[PDF]	ITSWGS518A	5

Communication Skills
Communicate (oral and written) technical information	[PDF]	ITSWGS512A	1
Listen to all stakeholders effectively	[PDF]	ITSWGS513A	1
Present effectively	[PDF]	ITSWGS514A	1

Continuous Professional Development
Collect and digest ICT development and application information	[PDF]	ITSWGS506A	3
Acquire new knowledge and skills	[PDF]	ITSWGS507A	3
Human Resources and Staff Management
Recruit, retain and develop IT staff	[PDF]	ITSWGS521A	8
Manage staff performance and appraisal	[PDF]	ITSWGS522A	7

Procurement Management
Manage Procurement	[PDF]	ITSWGS519A	5

Management of Ethics and Professionalism
Develop policies and guidelines for the appraisal of the enactment of professionalism	[PDF]	ITSWGS501A	3
Define and establish an appraisal mechanism for the enactment of professionalism	[PDF]	ITSWGS502A	4
Monitor the defined appraisal mechanism for the enactment of professionalism	[PDF]	ITSWGS503A	4
Review and improve the existing appraisal mechanism of the enactment of professionalism	[PDF]	ITSWGS504A	3

Resource Management
Utilize the given IT and related resources	[PDF]	ITSWGS520A	4

Risk Management
Acquire and protect the copyrights and IP rights related to IT	[PDF]	ITSWGS523A	4

Sales and Marketing
Develop sales and marketing strategies	[PDF]	ITSWGS510A	4
Manage product/services brand	[PDF]	ITSWGS511A	4

Social Skills
Team building	[PDF]	ITSWGS515A	2
Interpersonal and people networking skills	[PDF]	ITSWGS516A	1
Negotiate with all stakeholders effectively	[PDF]	ITSWGS517A	2

Level 6

Business Acumen
Formulate vision and mission statements	[PDF]	ITSWSM601A	3
Formulate the business strategies and policies	[PDF]	ITSWSM602A	4
Forecast and monitor business performance	[PDF]	ITSWGS607A	4
Identify opportunities to increase, strengthen, and enhance the competitive advantage	[PDF]	ITSWGS608A	4
Capture market and competitor intelligence	[PDF]	ITSWGS625A	4

Change Management
Manage changes	[PDF]	ITSWGS613A	5

Financial Management
Establish a business case for an IT investment	[PDF]	ITSWGS617A	11

Human Resources and Staff Management
Develop and maintain succession plans for human resources related to IT	[PDF]	ITSWGS615A	8

IT Consulting and Champion
Understand Systems Development Life Cycle (SDLC) and software development process	[PDF]	ITSWGS619A	4
Understand IT operations and IT processing	[PDF]	ITSWGS620A	4
Understand IT project management	[PDF]	ITSWGS621A	4
Understand organisational and project quality assurance	[PDF]	ITSWGS622A	3
Adopt and adapt international standards concerning information security as appropriate	[PDF]	ITSWGS623A	3
Comply with relevant laws and regulatory requirements	[PDF]	ITSWGS624A	1

Personal Attribute
Lead and motivate a team	[PDF]	ITSWGS604A	6
Apply analytical methods and techniques in problem solving	[PDF]	ITSWGS605A	6
Delegate responsibilities	[PDF]	ITSWGS606A	3

Relationship Management
Manage and maintain the portfolio and relationship with business partners	[PDF]	ITSWGS618A	4

Resource Management
Allocate and prioritize IT and related resources	[PDF]	ITSWGS614A	4

Risk Management
Identify and assess the risk factors related to IT	[PDF]	ITSWGS609A	4
Develop risk mitigation strategies and plans related to IT	[PDF]	ITSWGS610A	4
Review risk factors related to IT, and execute and monitor risk mitigation plans	[PDF]	ITSWGS611A	3

Specific Professional Responsibilities
Adopt and adapt international standards as appropriate	[PDF]	ITSWGS601A	5
Comply to organizational policies and procedures, relevant laws and regulatory requirements	[PDF]	ITSWGS602A	5
Seek and provide professional peer review	[PDF]	ITSWGS603A	4

Level 7

Business Acumen
Lead and motivate a team to attain extraordinary goals and accomplish incredible task	[PDF]	ITSWGS701A	12

Note:

The draft SCS has been moderated by the Hong Kong Council for Academic Accreditation (HKCAA) on its cross-industry level consistency.

All the Specification of Competency Standards ("SCSs") for industries and other related materials contained in this website are protected by copyright, which is owned by the Government of the Hong Kong Special Administrative Region.

Permission is granted for users to download the SCSs to store them in local computers, provided that this is solely for personal or non-commercial internal use, and provided further that this copyright notice is downloaded at the same time.

Save the above permitted use, any other use (including without limitation any reproduction, adaptation, distribution, dissemination or making available to the public) of the SCSs is strictly prohibited.