QGEA Policies, Standards and Guidelines

Explore below for a complete list of QGEA policies and supporting documents.

New to QGEA?  Discover what the QGEA is and how it can help you.

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

A

Application classification framework definitions

Type: Framework

Summary: Defining Queensland Government's generic classification scheme in terms of systems or functions required to meet organisational requirements.

Application classification framework diagram

Type: Framework

Summary: The goal of the Application classification framework is to allow for a common viewpoint and understanding of the application domains across the Queensland Government. This in turns aids standardisation as various stakeholders come to understand the possibilities for leveraging related domain activities in other departments.

Application planning techniques

Type: Guideline

Summary: This document supports the ICT investment planning methodology and provides specific techniques for gathering, classifying, mapping and assessing applications

Authorised and unauthorised use of ICT services, facilities and devices guideline

Type: Guideline

Summary: This guideline supports the Use of ICT services, facilities and devices policy (IS38) and has been designed to: •define the concepts of limited personal use and authorised and unauthorised use •provide a range of examples for departmental consideration when they are determining and defining authorised and unauthorised use of ICT services, facilities and devices.

B

Business planning techniques

Type: Guideline

Summary: This document supports the ICT investment planning methodology and provides specific techniques for gathering, classifying, mapping and assessing business services and processes

Business process classification framework

Type: Framework

Summary: Organisations seek to understand their business processes in a consistent way, and a business process classification framework can provide standard definitions and terminology to ensure that everyone in your business is speaking the same 'business process' language.

Business process modelling notation guideline

Type: Guideline

Summary: This guideline provides information and advice to Queensland Government agencies on the recommended practices for documenting business processes using the Business Process Model and Notation (BPMN[1]) Specification Version 2.0 released January 2011.

Business services classification framework

Type: Framework

Summary: Queensland Government business services (business services) are defined as sets of activities that deliver value to or enable outcomes for Queenslanders through the delivery of business outputs.

Business services classification framework diagram

Type: Framework

Summary: Queensland Government business services (business services) are defined as sets of activities that deliver value to or enable outcomes for Queenslanders through the delivery of business outputs.

Business services classification framework guideline

Type: Guideline

Summary: Queensland Government business services (business services) are defined as sets of activities that deliver value to or enable outcomes for Queenslanders through the delivery of business outputs.

C

Channel Management Strategy

Type: Strategy

Summary: This channel management strategy starts to pave the way for the Queensland Government to manage channels using these trends to ensure service delivery is modern, responsive and efficient.

Client identity management policy

Type: Policy

Summary:

Client identity management standard

Type: Standard

Summary: This document will set the minimum controls that must be met to provide a viable solution for external client identity management for the Queensland Government.

Cloud computing implementation model

Type: Guideline

Summary: This implementation model outlines an approach for Queensland Government to begin the transformation to a new ICT delivery paradigm and a blueprint for the long-term adoption of commercial cloud services by government in a multi-cloud provider ecosystem

Cloud solution buying guideline

Type: Guideline

Summary: Developed to provide agencies with assistance on the practical aspects of sourcing a cloud solution.  This document also provides a combination of lessons learnt and key considerations to enable effective sourcing and adoption of cloud services

Cloud strategy

Type: Strategy

Summary: The Queensland Government's adoption of cloud computing, as one form of ICT-as-a-service, will enable it to transition from mainly internal, high-cost customised ICT applications and solutions to lower cost, standardised services where quality improvements and cost reductions are driven by highly competitive market forces

CMS requirements

Type: Example

Summary: This is the CMS requirements checklist which may be utilised to clarify specific (mandatory/highly desirable/desirable (optional)) requirements of a Content Management System.

Collaborative workspace strategy

Type: Strategy

Summary: The purpose of this document is to translate the State’s ICT business requirements and scope for future collaborative workspace environments into a high level services architecture.

Customer details management policy

Type: Policy

Summary: Without requiring the capture or storage of specific data attributes, this policy sets a benchmark for agencies wishing to exchange the customer data they currently manage.

Customer payments to government strategy

Type: Strategy

Summary: This document sets the strategy around customer payments to Queensland Government. It discusses the drivers, determines the gaps by exploring the future state and analysing the current state. A set of guiding principles have been stated which summarises the analysis in order to support a consistent, efficient and effective method for receiving customer payments.

D

Data centre strategy and principles

Type: Principle

Summary: The purpose of this document is to translate the State's evolving data centre needs into a high level strategy and principles that will outline the principles for data centre provision and consumption across Queensland Government.

Deployment of intrusion detection and prevention systems guideline

Type: Guideline

Summary:

Determining the ex ante release status of information

Type: Guideline

Summary: Guideline on the determining the ex ante release status of information.

Digital signatures guideline

Type: Guideline

Summary: This guideline provides guidance on the use of e-signatures for government purposes. This guidance highlights compliance issues with relevant standards for Commonwealth and State laws.

Domain name registration standard

Type: Standard

Summary: This standard covers the requirements for registering and maintaining domain names held by Queensland Government agencies.

Domain names policy (IS39)

Type: Policy

Summary:

E

eDRMS fact sheet

Type: Fact sheet

Summary: The purpose of this factsheet is to communicate information about the existing procurement arrangement - QGCPO808 - Standing Offer Arrangement for the Provision of eDRMS, the mandate for which resides outside of the Queensland Government Enterprise Architecture (QGEA).

Email disclaimer guideline

Type: Guideline

Summary:

Email monitoring and the TIA guideline

Type: Guideline

Summary: This guideline provides information and advice for Queensland Government departments to consider when addressing issues surrounding monitoring employee email, as part of the Use of ICT facilities and devices policy (IS38).

Email monitoring reference sheet

Type: Guideline

Summary: The information contained in this document may be used as additional reference material by Queensland Government agencies when managing the use of ICT facilities and devices. Agencies should consider the information provided as reference material and interpret it in the context of their own agency methodologies. The contents of this document do not constitute legal advice and should not be relied on as specific advice. The applicability of the information in this document may vary significantly depending on the particular configuration of an agency’s ICT network and its monitoring practices.

Employee agreement on use of internet and email example

Type: Example

Summary: An example of an Employee agreement on use of internet and email.

Establishing an information steering committee

Type: Example

Summary: Principle 3 of Information Standard 2 – ICT Resource Planning requires agencies to establish appropriate governance arrangements to ensure the application, management and review of the agency ICT resources and investments are consistent with the strategic directions and reporting requirements of the agency and Government.The creation of an Information Steering Committee (ISC) or similar governance mechanism can assist agencies to comply with this principle.

Examples of authorised and unauthorised use

Type: Example

Summary: A fact sheet of examples of authorised and unauthorised use of ICT facilities and devices for reference.

External third-party audit checklist

Type: Example

Summary: The information contained in this document may be used as additional reference material by Queensland Government agencies when managing the use of software.  Agencies should consider the information provided as reference material and interpret it in the context of their own agency methodologies.

F

Federated identity blueprint

Type: Guideline

Summary: The purpose of this document is to outline a blueprint for a modern federated identity architecture and ecosystem to support digital government.

 

G

General planning techniques

Type: Guideline

Summary: This document supports the ICT investment planning methodology and provides general techniques for gathering, classifying, mapping and assessing assets

 

H

Hardware currency guideline

Type: Guideline

Summary: The Hardware currency guideline support agencies to implement the ICT hardware currency policy which requires agencies to retire or update ICT hardware with a medium or high business impact before it reaches end-of-service-life (EOSL) support unless the risk of not doing so has been formally accepted by the agency.

Hardware currency guideline

Type: Guideline

Summary: To retire or update ICT hardware with a medium or high business impact before it reaches end of service life support.

Hardware currency policy

Type: Policy

Summary: Queensland Government departments define and implement suitable strategies for managing the life cycle of ICT hardware assets.

 

I

ICT action plan example

Type: Example

Summary: An example of an ICT action plan.

ICT asset disaster recovery planning guideline

Type: Guideline

Summary:

ICT cabling infrastructure technical standard

Type: Standard

Summary: This standard details specific requirements intended to specify the technical requirements for Queensland Government ICT cabling infrastructure.

ICT industry engagement framework

Type: Framework

Summary: The ICT Industry Engagement Framework was designed to assist Government agencies when engaging with the members of the ICT Industry.

ICT infrastructure change management guideline

Type: Guideline

Summary:

ICT planning method assessment tool

Type:

Summary: This is an example of an ICT planning method assessment tool.

ICT program and project assurance framework

Type: Framework

Summary: The Queensland Government ICT program and project assurance framework provides a mechanism for independently reviewing and advising on ICT and ICT-enabled initiatives to ensure they represent value for money, are viable and are appropriately governed.

ICT program and project assurance policy

Type: Policy

Summary: The establishment of a consistent assurance process is critical to improve confidence in information regarding programs and projects and to support successful delivery of ICT and ICT-enabled initiatives and services across the Queensland Government.

ICT resources strategic planning policy (IS2)

Type: Policy

Summary: Ensuring ICT resources strategic planning is supported by a structured and consistent approach for managing current ICT assets and planning for current and future investments.

ICT SME participation scheme standard

Type: Standard

Summary: The purpose of this standard is to describe the procurement processes to be used by departments when engaging with small to medium sized enterprises (SMEs). This standard should be read in conjunction with the ICT SME participation scheme policy.

ICT-as-a-service decision framework overview

Type: Framework

Summary: The ICT-as-a-service Decision framework supports agencies in making well informed and evidence-based decisions to either strategically transition their ICT workload system/application/data) into an as-a-service delivery model, or to deliver via traditional in-house approach or to adopt a combination of these approaches.

ICT-as-a-service deployment model selection guideline

Type: Guideline

Summary: This guideline outlines the key principles that agencies should consider when selecting their preferred deployment model for an ICT workload. This guideline is part of the ICT-as-a-service decision framework.

ICT-as-a-service offshore data storage and processing policy

Type: Policy

Summary: Ensuring departments adopt adequate risk management and governance procedures when making decisions associated with offshore storage of departmental data.

ICT-as-a-service policy

Type: Policy

Summary: Ensuring departments include externally provisioned ICT services when making decisions associated with ICT solution sourcing.

ICT-as-a-service risk assessment annexe

Type: Template

Summary: This document provides supporting detail for the ICT-as-a-services risk assessment guideline.

ICT-as-a-service risk assessment guideline

Type: Guideline

Summary: This document provides guidance to support an agency in making informed and evidence-based decisions to either transition an ICT workload (system/application/data) to an as-a-service model (cloud, managed service) or to deliver via an in-house traditional approach.

ICT-as-a-service security assurance guideline

Type: Guideline

Summary: This document provides information and advice to support Queensland Government agencies in gaining adequate assurance of planned cloud and ICT as-a-service offerings through the evaluation, service integration design, contract and procurement activities.

Identification and classification of information assets

Type: Template

Summary: This guideline specifies how to correctly identify and classify an information asset. The last section contains a checklist to assist with the identification of information assets.

Implementing information governance guideline

Type: Guideline

Summary: This guideline provides advice to help agencies with suggested approaches for implementing information governance in line with the Information governance policy. It defines information governance, roles and responsibilities and reporting functions.

Incident management guideline

Type: Guideline

Summary:

Information access and use guideline

Type: Guideline

Summary: This guideline provides advice to help departments with suggested approaches for implementing information access and use arrangements in line with the Queensland Government Enterprise Architecture (QGEA) Information access and use policy (IS33).

Information architecture supporting classifications

Type: Guideline

Summary: Describes additional classifications within the information architecture domain that provide support for cross-agency information sharing activities.

Information architecture white paper

Type: Guideline

Summary: This document describes the meaning and scope of information architecture as understood from the perspective of the Queensland Government Enterprise Architecture. It provides a unification of the various concepts surrounding the information dimension of the government.

Information asset custodianship policy (IS44)

Type: Policy

Summary: Managing information assets as part of a lifecycle ensures that information is relevant to its consumers and is renewed or retired at the appropriate time.

Information asset identification and classification form

Type: Template

Summary: This document provides a single checklist for identifying information assets.

Information asset lifecycle guideline

Type: Guideline

Summary: The Information asset lifecycle guideline describes typical phases of an asset lifecycle as well as a recommended approach for managing information, application and technology assets throughout the life of each asset or group of assets. This guideline describes details of typical activities that an agency may need to consider to effectively manage their ICT assets.

Information asset register guideline

Type: Guideline

Summary: This document outlines a suggested structure and content requirements for an information asset register.

Information assets and their classification

Type: Guideline

Summary: This fact sheet explains what information assets are, and the classifications that are applied to them.

Information classification framework definitions

Type: Framework

Summary: The Information classification framework defines a composite view of the Queensland Government’s information

Information classification framework diagram

Type: Framework

Summary: The Information classification framework defines the Queensland Government's generic classification scheme in terms of identifying the types of information assets required to meet organisational requirements

Information governance policy

Type: Policy

Summary: Information is a core strategic asset to govern and manage accordingly throughout its lifecycle.

Information management maturity development resource template

Type: Template

Summary: This template can be used to conduct a self-assessment of a department's information management maturity. It is supported by the related Information management maturity development resource.

Information management policy framework

Type: Framework

Summary: The Information management policy framework is a tool for departments to use that can assist with making sense of information management within their own areas.

Information management roles and responsibilities guideline

Type: Guideline

Summary: This guideline specifies generic roles and responsibilities that may be required to support effective information management in an agency. Agencies may use this guideline as a point of reference and starting point for the development of information management roles specific to the agency.

Information management strategic framework

Type: Framework

Summary: This document sets the overall direction for the Queensland Government's information management practice. It seeks to ensure that in all aspects of our work we apply the fundamental principles, quality assurance, and life cycle management policies inherent in good information management.

Information management work plan guideline

Type: Guideline

Summary: This guideline provides advice to help departments and Queensland Government ICT service providers develop an information management work plan and supports implementation of the Information governance policy.

Information planning techniques

Type: Guideline

Summary: This document supports the ICT investment planning methodology and provides specific techniques for gathering, classifying, mapping and assessing information.

Information principles

Type: Principle

Summary: The principles in this document represent a statement of the fundamental beliefs and values underpinning the information layer of the Queensland Government Enterprise Architecture (QGEA), and the rules or behaviours with which government agencies are expected to comply with in this context. The QGEA Information principles provide high-level guidance on the required approach to information and its management across government and should not require frequent change or amendment.

Information security (IS18) information standard

Type: Policy

Summary:

Information security classification framework (QGISCF)

Type: Framework

Summary:

Information security controls standard

Type: Standard

Summary:

Information security controls standard (QGISCS)

Type: Standard

Summary:

Information security external party governance guideline

Type: Guideline

Summary:

Information security incident category guideline

Type: Guideline

Summary:

Information security incident reporting spreadsheet

Type: Template

Summary:

Information security incident reporting standard

Type: Standard

Summary:

Information security internal governance guideline

Type: Guideline

Summary:

Information security policy framework (QGISPF)

Type: Framework

Summary:

Information sharing - lessons learned report

Type: Guideline

Summary: This report is the result of a review of information-sharing activities across the Queensland Government

Initiate investment planning process

Type: Guideline

Summary: This document supports the ICT investment planning methodology and provides specific techniques for identifying stakeholders

Integration register

Type: Template

Summary: As required by the Integration policy, agencies must maintain an up-to-date integration point register covering all software integrations – externally, cross-agency or internal to an agency. This register may be used for the purpose of recording these integrations.

Internet protocol (IP) version 4 addressing policy

Type: Policy

Summary: This policy ensures that the Queensland Government has continued access to sufficient publicly accessible IPv4 addresses for the future.

Internet protocol (IP) version 4 addressing standard

Type: Standard

Summary: This standard covers the requirements for IPv4 addressing and routing between Queensland Government agencies and with Queensland Government whole-of-government infrastructure.

IS18 Implementation guideline

Type: Guideline

Summary:

IS18 mandatory clauses

Type: Policy

Summary:

 

L

Licence review checklist

Type: Guideline

Summary: This checklist provides guidance in the steps involved for Creative Commons licensing in Queensland Government.

 

M

Mapping between ANZLIC and AGLS

Type: Example

Summary: This factsheet provides a mapping between the ANZLIC metadata profile and the 19 AGLS/NZGLS metadata elements.

Metadata management guideline

Type: Guideline

Summary: This guideline supports practitioners in the management of metadata describing information assets and aids in implementation of the mandatory principles of Information Standard 34: Metadata.

N

Network transmission security assurance framework (NTSAF)

Type: Framework

Summary:

 

O

Object identifier registration (OID) policy

Type: Policy

Summary: This policy ensures the use of a standard OID schema and OID governance framework.

Object identifier standard

Type: Standard

Summary: This standard specifies the schema and governance framework for the use of object identifiers (OIDs) for Queensland Government agencies.

Office suites policy

Type: Policy

Summary: This policy enables the exchange of electronic office documents using office suit file formats.

One William Street - state ICT architecture blueprint

Type: Guideline

Summary: The purpose of this document is to translate the Statement's business requirements and scope of the 1WS ICT project ito a high level services architecture

Online community engagement guideline

Type: Guideline

Summary: This guideline has been developed to assist public sector employees in gaining an understanding of how online technology can be used to support community engagement. The document also provides guidance on the implementation of the Online community engagement policy.

 

P

Patch management guideline

Type: Guideline

Summary:

Personal use of social media guideline

Type: Guideline

Summary: This guideline specifies the suggested conditions of personal and professional access to social media web sites via Queensland Government ICT services, facilities and devices where such access has been authorised and should be read together with Use of ICT services, facilities and devices policy (IS38).

Portfolio, program and project management policy

Type: Policy

Summary: This policy seeks to ensure a structured, effective and consistent approach for portfolio, program and project management is adopted across the Queensland Government.

Principles for the use of social media

Type: Principle

Summary: The principles are designed to be flexible yet provide a professional, friendly and consistent experience for Queenslanders wishing to interact with the State Government through social media channels.

Print services guideline

Type: Guideline

Summary: This guideline provides information and advice for Queensland Government departments to consider when implementing the policy requirements of the Print services policy.

Procurement and disposal of ICT products and services (IS13) policy

Type: Policy

Summary: This policy seeks to ensure a structured, effective and consistent approach to the acquisition, management, maintenance and disposal of ICT products and services.

Public Wi-Fi guideline

Type: Guideline

Summary: Queensland Government departments may choose to provide users with a public Wi-Fi service for authorised use. This guideline has been developed to assist departments with the provision of public Wi-Fi services including guidance on service configuration and developing the terms and conditions of use.

 

Q

QGAF templates

Type: Template

Summary:

QGEA foundation principles

Type: Principle

Summary: The foundation principles represent a statement of the fundamental beliefs underpinning the QGEA, and the values or behaviours with which government agencies are expected to comply. The foundation principles provide high-level guidance for the management of information and for investment decision making for information and communications technology across government.

Queensland Government authentication framework (QGAF)

Type: Framework

Summary:

Queensland Government Enterprise Architecture framework

Type: Framework

Summary: Describing the Queensland Government Enterprise Architecture (QGEA) Framework, including the underlying meta model. It also describes the agency contribution process, including governance and compliance.

Queensland Government Information Architecture

Type: Framework

Summary: The business of government is reliant on the creation, management and use of information. With government services being delivered across a broad portfolio of service domains, the task of managing the information can become large and complex. Using an appropriate architecture approach to support the management of information is an important area within government agencies to ensure that service delivery is efficient and thorough.

Queensland public sector intellectual property principles factsheet

Type: Fact sheet

Summary: The Department of Science, Information Technology and Innovation (DSITI) is responsible for the administration of Crown copyright and other IP (Crown IP) across the Queensland Government. Guidance on the management of Queensland Government IP is contained in the Queensland Public Sector Intellectual Property Principles (IP principles).

R

Receipt of inappropriate emails example

Type: Example

Summary: An example of how to respond to the receipt of inappropriate emails.

Regionalisation of language

Type: Guideline

Summary: Due to increased reliance on computer-based spelling and grammar checking functionality, as well as automatic formatting of text and numbers, it is important that departments choose correct regional settings to ensure Australian English and formatting conventions are used in all government communication.

S

Short messaging service (SMS) standard

Type: Standard

Summary: The Short Message Service (SMS) Standard, referred to in this document as the ‘standard’, directs agencies with whole-of-Government requirements for public facing SMS services, and aims to assist agencies in the development and implementation of SMS technology.

Software asset management guideline

Type: Guideline

Summary: This guideline specifies a consistent approach for the management of third party software licences and associated media purchased by Queensland Government agencies.

Software licence management maturity model

Type: Guideline

Summary: The document has been designed as a tool to support Queensland Government agencies in implementing and maintaining a best practice and industry standard software licence management (SLM) framework.

 

T

Technology classification framework

Type: Framework

Summary: Defining the Queensland Government’s generic classification scheme in terms of infrastructure systems including software, hardware and services to support business applications.

Technology classification framework diagram

Type: Framework

Summary: Defining the Queensland Government’s generic classification scheme in terms of infrastructure systems including software, hardware and services to support business applications.

Technology planning techniques

Type: Guideline

Summary: This document supports the ICT investment planning methodology and provides specific techniques for gathering, classifying, mapping and assessing technology.

Telecommunications (Interception and Access) Act FAQs

Type: Example

Summary: This FAQ guideline are intended to provide an indication of the comparative levels of risks associate with different monitoring practices and identify some practices that may represent reasonably safe compromises between legal risk and operational necessity.

U

Unified communication (including IP telephony) report

Type: Guideline

Summary: This report outlines a balanced approach that allows departments to meet their business requirements while still supporting whole-of-government outcomes.

Unified communications (including IP telephony) standard

Type: Standard

Summary: This standard specifies the requirements regarding the selection and deployment of unified communications (including internet protocol (IP) telephony) solutions, as per the Unified communication (including IP telephony QGEA policy.

Use of copyright material flowchart

Type: Guideline

Summary: This is a decision making flowchart which can be followed regarding the government use of copyright material. This flowchart contains general guidance only and should not be relied on for comprehensive or specific advice. Obtain formal legal advice when necessary.

Use of copyright materials guideline

Type: Guideline

Summary: This guideline provides information and guidance for Queensland Government agencies regarding their obligations under the Copyright Act 1968 (Cth) when using third party copyright material.

Use of ICT facilities and devices policy example

Type: Example

Summary: This is an example template which could be used for establishing a use of ICT facilities and devices policy.

Use of ICT services, facilities and devices implementation guideline

Type: Guideline

Summary: This guideline provides information and advice for Queensland Government departments to consider when implementing the policy requirements of the Use of ICT services, facilities and devices policy (IS38).

Use of ICT services, facilities and devices policy

Type: Policy

Summary: The purpose of this policy is to ensure the implementation of consistent policies and practices in the management of employee use of ICT services, facilities and devices.

Use of the word architect factsheet

Type: Fact sheet

Summary: This factsheet provides information on the use of the word 'architect' in terms of information and communication technology (ICT) and business planning to ensure there is no conflict with the relevant sections of the Architects Act 2002 (Qld).

W

Web application security testing guideline

Type: Guideline

Summary:

Web services interoperability standard

Type: Standard

Summary: The purpose of this standard is to specify technical requirements to ensure that web services created within Queensland Government are interoperable across the government.

Websites policy (IS26)

Type: Policy

Summary: This policy states the minimum requirements for Queensland Government agencies in the creation, implementation and management of websites.