Skip to main content

Guidance and templates for ICT operations assurance

Guidance and templates to support government organisations to implement a fit-for-purpose assurance approach for managing their information and communications technology (ICT) risks.

  1. 1

    Managing your ICT risks

    These resources will help you to design and implement a risk management process that enables critical ICT risks to be effectively identified, managed and governed:

  2. 2

    Developing your assurance plan

    These resources will help you develop a fit-for-purpose assurance plan based on the risk and complexity of your organisation’s ICT operation:

  3. 3

    Maximising the value of independent assurance

    These resources will help you create a comprehensive engagement terms of reference for an independent assurance review, and to select the right provider with the right experience to deliver a high-quality review:

  4. 4

    Ensuring high quality assurance information

    The quality of assurance reports is critical to make well informed decisions. Use this resource to review the quality of assurance reports:

    Quality review checklist: ICT operations assurance report (Word 114KB)

  5. 5

    Overseeing assurance activities and recommendations


    • How will progress against the assurance plan be monitored at the governance level?
    • How will the status of issues raised in assurance reports be tracked and reported at the governance level?
  6. 6

    Capturing lessons learned

    Share your ICT risk management and assurance lessons learned with us to:

    • help inform a system-wide view of trends
    • share examples of working ‘smarter’ for other government organisations to use.


Utility links and page information

Was this page helpful?
Thanks, do you want to tell us more?

Do not enter personal information. All fields are optional.

Last updated