Skill Descriptions by Name Flashcards
SFIA is © Copyright SFIA Foundation 2003–2015 - before accessing this material please register for an appropriate licence at http://www.sfia-online.org/
Configuration Management
CFMG
The lifecycle planning, control and management of the assets of an organisation (such as documentation, software and service assets, including information relating to those assets and their relationships. This involves identification, classification and specification of all configuration items (CIs) and the interfaces to other processes and data. Required information relates to storage, access, service relationships, versions, problem reporting and change control of CIs. The application of status accounting and auditing, often in line with acknowledged external criteria such as ISO 9000, ISO/IEC 20000, ISO/IEC 27000 and security throughout all stages of the CI lifecycle, including the early stages of system development.
CFMG 2-6
Capacity Management
CPMG
The management of the capability, functionality and sustainability of service components (including hardware, software, network resources and software/infrastructure as a Service) to meet current and forecast needs in a cost efficient manner aligned to the business. This includes predicting both long-term changes and short-term variations in the level of capacity required to execute the service, and deployment, where appropriate, of techniques to control the demand for a particular resource or service.
CPMG 4-6
Continuity Management
COPL
The provision of service continuity planning and support. This includes the identification of information systems which support critical business processes, the assessment of risks to those systems’ availability, integrity and confidentiality and the co-ordination of planning, designing, testing and maintenance procedures and contingency plans to address exposures and maintain agreed levels of continuity. This function should be performed as part of, or in close cooperation with, the function which plans business continuity for the whole organisation.
COPL 4-5
Database Design
DBDS
The specification, design and maintenance of mechanisms for storage and access to both structured and unstructured information, in support of business information needs.
DBDS 2-6
v6: Name changed (previously ‘Database/Repository Design’).
Incident Management
USUP
The processing and coordination of appropriate and timely responses to incident reports, including channelling requests for help to appropriate functions for resolution, monitoring resolution activity, and keeping clients appraised of progress towards service restoration.
USUP 2-5
v6: Name changed (previously ‘Service Desk and Incident Management’).
Removed skill level 1 (see CSMG1).
Sustainability Management
SUMI
The specification, planning and management of changes to assets, systems, processes or practices intended to reduce or constrain consumption and/or disposal of energy or materials, within the context of company strategy and policy, and regulatory and contractual requirements. The evaluation of changes to ensure that planned benefits have been obtained. The specification of remedial and process improvement actions in cases where planned benefits have not been obtained. The identification and planning of alternative sources of supply.
SUMI 5-6
v6: Name changed (previously ‘Sustainability Management for IT’).
IT Strategy and Planning
ITSP
The creation, iteration and maintenance of a strategy in order to align IT plans with business objectives and the development of plans to drive forward and execute that strategy. Working with stakeholders to communicate and embed strategic management via objectives, accountabilities and monitoring of progress.
ITSP 5-7
v6: New skill.
Customer Service Support
CSMG
The management and operation of one or more customer service or service desk functions. Acting as a point of contact to support service users and customers reporting issues, requesting information, access, or other services.
CSMG 1-6
v6: Name changed (previously ‘Client Services Management’).
Sourcing
SORC
The provision of policy, internal standards and advice on the procurement or commissioning of externally supplied and internally developed products and services. The provision of commercial governance, conformance to legislation and assurance of information security. The implementation of compliant procurement processes, taking full account of the issues and imperatives of both the commissioning and supplier sides. The identification and management of suppliers to ensure successful delivery of products and services required by the business.
SORC 2-7
v6: New skill.
Programming/Software Development
PROG
The design, creation, testing and documenting of new and amended software components from supplied specifications in accordance with agreed development and security standards and processes.
PROG 2-5
Business Analysis
BUAN
The methodical investigation, analysis, review and documentation of all or part of a business in terms of business functions and processes, the information used and the data on which the information is based. The definition of requirements for improving processes and systems, reducing their costs, enhancing their sustainability, and the quantification of potential business benefits. The collaborative creation and iteration of viable specifications and acceptance criteria in preparation for the deployment of information and communication systems.
BUAN 3-6
Change Implementation Planning and Management
CIPM
The definition and management of the process for deploying and integrating new digital capabilities into the business in a way that is sensitive to and fully compatible with business operations.
CIPM 5-6
Testing
TEST
The planning, design, management, execution and reporting of tests, using appropriate testing tools and techniques and conforming to agreed process standards and industry specific regulations. The purpose of testing is to ensure that new and amended systems, configurations, packages, or services, together with any interfaces, perform as specified (including security requirements) , and that the risks associated with deployment are adequately understood and documented. Testing includes the process of engineering, using and maintaining testware (test cases, test scripts, test reports, test plans, etc) to measure and improve the quality of the software being tested.
TEST 1-6
Service Level Management
SLMO
The planning, implementation, control, review and audit of service provision, to meet customer business requirements. This includes negotiation, implementation and monitoring of service level agreements, and the ongoing management of operational facilities to provide the agreed levels of service, seeking continually and proactively to improve service delivery and sustainability targets.
SLMO 2-7
Learning Design and Development
TMCR
The specification, design, creation, packaging and maintenance of materials and resources for use in learning and development in the workplace or in compulsory, further or higher education. Typically involves the assimilation of information from existing sources, selection and re-presentation in a form suitable to the intended purpose and audience. Includes instructional design, content development, configuration and testing of learning environments, and use of appropriate current technologies such as audio, video, simulation and assessment. May include third party accreditation.
TMCR 4-6
v6: Added skill level 6.
Analytics
INAN
The validation and analysis of significant volumes of data, including the ability to discover and quantify patterns and trends in numbers, symbols, text, sound and image. Relevant techniques may include statistical and data mining algorithms and machine learning methods such as rule induction, artificial neural networks, genetic algorithms and automated indexing systems.
INAN 3-7
v6: Name changed (previously ‘Information Analysis’).
IT Infrastructure
ITOP
The operation and control of the IT infrastructure (typically hardware, software, data stored on various media, and all equipment within wide and local area networks) required to deliver and support IT services and products to meet the needs of a business. Includes preparation for new or changed services, operation of the change process, the maintenance of regulatory, legal and professional standards, the building and management of systems and components in virtualised computing environments and the monitoring of performance of systems and services in relation to their contribution to business performance, their security and their sustainability.
ITOP 1-4
v6: Name changed (previously ‘IT Operations’).
Information Content Publishing
ICPM
The evaluation and application of different publishing methods and options, recognising key features, including open source and proprietary options. The management and tuning of the processes that collect, assemble and publish information, including in unstructured and semi-structured forms, for delivery to the user at the point at which it is needed. The management of copyright, data protection and other legal issues associated with publishing and re-use of published information and data.
ICPM 1-6
Contract Management
ITCM
The overall management and control of the operation of formal contracts for supply of products and services.
ITCM 4-6
Safety Engineering
SFEN
The application of appropriate methods to assure safety during all lifecycle phases of safety-related systems developments, including maintenance and re-use. These include safety hazard and risk analysis, safety requirements specification, safety-related system architectural design, formal method design, safety validation and verification, and safety case preparation.
SFEN 3-6
Learning Delivery
ETDL
The transfer of business and/or technical skills and knowledge and the promotion of professional attitudes in order to facilitate learning and development. Uses a range of techniques, resources and media (which might include eLearning, on-line virtual environments, self-assessment, peer-assisted learning, simulation, and other current methods).
ETDL 3-5
Methods and Tools
METL
Ensuring that appropriate methods and tools for the planning, development, testing, operation, management and maintenance of systems are adopted and used effectively throughout the organisation.
METL 4-6
Enterprise and Business Architecture
STPL
The creation, iteration, and maintenance of structures such as enterprise and business architectures embodying the key principles, methods and models that describe the organisation’s future state, and that enable its evolution. This typically involves the interpretation of business goals and drivers; the translation of business strategy and objectives into an “operating model”; the strategic assessment of current capabilities; the identification of required changes in capabilities; and the description of inter-relationships between people, organisation, service, process, data, information, technology and the external environment. The architecture development process supports the formation of the constraints, standards and guiding principles necessary to define, assure and govern the required evolution; this facilitates change in the organisation’s structure, business processes, systems and infrastructure in order to achieve predictable transition to the intended state.
STPL 5-7
v6: Name changed (previously ‘Enterprise and Business Architecture Development’).
Database Administration
DBAD
The installation, configuration, upgrade, administration, monitoring and maintenance of databases.
DBAD 2-5
User Experience Evaluation
USEV
Evaluation of systems, products or services, to assure that the stakeholder and organisational requirements have been met, required practice has been followed, and systems in use continue to meet organisational and user needs. Iterative assessment (from early prototypes to final live implementation) of effectiveness, efficiency, user satisfaction, health and safety, and accessibility to measure or improve the usability of new or existing processes, with the intention of achieving optimum levels of product or service usability.
USEV 2-6
v6: Added skill level 6.
Quality Management
QUMG
The application of techniques for monitoring and improvement of quality to any aspect of a function or process. The achievement of, and maintenance of compliance to, national and international standards, as appropriate, and to internal policies, including those relating to sustainability and security.
QUMG 4-7
v6: Added skill level 4.
Digital Forensics
DGFS
The collection, processing, preserving, analysing, and presenting of computer-related evidence in support of security vulnerability mitigation and/or criminal, fraud, counterintelligence, or law enforcement investigations.
DGFS 4-6
v6: New skill.
Conformance Review
CORE
The independent assessment of the conformity of any activity, process, deliverable, product or service to the criteria of specified standards, best practice, or other documented requirements. May relate to, for example, asset management, network security tools, firewalls and internet security, sustainability, real-time systems, application design and specific certifications.
CORE 3-6
Learning and Development Management
ETMG
The provision of learning and development processes (including learning management systems) in order to develop the professional, business and/or technical skills required by the organisation.
ETMG 3-7
Technical Specialism
TECH
The development and exploitation of expertise in any specific area of information or communications technology, technique, method, product or application area.
TECH 4-6
Organisation Design and Implementation
ORDI
The design and implementation of an integrated organisation structure, role profiles, culture, performance measurements, competencies and skills, to facilitate strategies for change and for training to enable the change. The identification of key attributes of the culture and the key principles and factors for addressing location strategy.
ORDI 5-6
Sustainability Strategy
SUST
The preparation of a sustainability strategy, taking into account any established corporate strategy, to be used as a basis for policies and planning, and covering both consumption and sources of supply of energy and materials. Evaluation and inclusion, as appropriate, of political, legislative, economic, social and technological factors. Identification of major external standards, practices or schemes to be adopted. Consultation with identified relevant parties, either internal or external. Obtaining agreement to the strategy and the commitment to act upon it.
SUST 4-6
v6: Added skill level 4.
Business Process Improvement
BPRE
The identification of new and alternative approaches to performing business activities. The analysis of business processes, including recognition of the potential for automation of the processes, assessment of the costs and potential benefits of the new approaches considered and, where appropriate, management of change, and assistance with implementation. May include the implementation of a process management capability/discipline at the enterprise level.
BPRE 5-7
Business Risk Management
BURM
The planning and implementation of organisation-wide processes and procedures for the management of risk to the success or integrity of the business, especially those arising from the use of information technology, reduction or non-availability of energy supply or inappropriate disposal of materials, hardware or data.
BURM 4-7
Information Systems Coordination
ISCO
Typically within a large organisation in which the information strategy function is devolved to autonomous units, or within a collaborative enterprise of otherwise independent organisations, the coordination of information strategy matters where the adoption of a common approach (such as shared services) would benefit the organisation.
ISCO 6-7
Sustainability Assessment
SUAS
The evaluation of the sustainability of operational or planned services, devices and day-to-day operations such as travel. The establishment of a model or scheme to track changes in consumption over time and to generate feedback to enable improvements in energy or resource efficiency. The identification of areas requiring attention, and the initiation of actions to change or control the procurement of energy or other resources, so as to improve sustainability.
SUAS 4-6
Safety Assessment
SFAS
The assessment of safety-related software systems to determine compliance with standards and required levels of safety integrity. This involves making professional judgements on software engineering approaches, including the suitability of design, testing, and validation and verification methods, as well as the identification and evaluation of risks and the means by which they can be reduced. The establishment, maintenance and management of an assessment framework and practices.
SFAS 5-6
IT Management
ITMG
The management of the IT infrastructure and resources required to plan for, develop, deliver and support IT services and products to meet the needs of a business. The preparation for new or changed services, management of the change process and the maintenance of regulatory, legal and professional standards. The management of performance of systems and services in terms of their contribution to business performance and their financial costs and sustainability. The management of bought-in services. The development of continual service improvement plans to ensure the IT infrastructure adequately supports business needs.
ITMG 5-7