[Hiring] Independent End Point Assessor @University of Northumbria

The primary role of a software engineer is to be able to design, build and test high-quality software solutions. The software engineer role is broader and with higher levels of responsibility than a software developer as they need to apply engineering principles to all stages of the software development process, from requirements, analysis and design, development and data requirements whilst ensuring security robustness is built in. They will typically be working as part of a larger collaborative team and will have responsibility for significant elements of software projects.

• Create effective and secure software solutions using contemporary software development languages to deliver the full range of functional and non-functional requirements using relevant development methodologies.
• Undertake analysis and design to create artefacts, such as use cases to produce robust software designs.
• Produce high quality code with sound syntax in at least one language following best practices and standards.
• Perform code reviews, debugging and refactoring to improve code quality and efficiency.
• Test code to ensure that the functional and non-functional requirements have been met.
• Deliver software solutions using industry standard build processes, and tools for configuration management, version control and software build, release and deployment into enterprise environments.

Knows and understands:

• How to operate at all stages of the software development lifecycle.
• How teams work effectively to develop software solutions embracing agile and other development approaches.
• How to apply software analysis and design approaches.
• How to interpret and implement a design, compliant with functional, non-functional and security requirements.
• How to perform functional and unit testing.
• How to use and apply the range of software tools used in Software engineering.

An IT consultant requires a broad set of skills in business analysis, solutions development, network infrastructure, data, cyber security etc. They use their consulting skills in order to advise clients on how to best utilise technology to meet their business objectives, overcome problems and increase productivity. They provide strategic guidance to clients with regard to technology and facilitate changing business processes through enhancements to technology solutions. They provide technical assistance and are often responsible for providing training.

Be able to:

• Perform technical process improvement tasks in a range of environments to solve business problems.
• Present optimised solutions to improve business process and workflows through improved technology.
• Recommend options based upon risks, costs vs benefits, and impact on other business processes.
• Participate in walk-throughs for IT, to identify and document key risks within a client’s organisation.
• Support training of end-users in preparation for system activation.
• Evaluate the success of a new system, process, initiative, etc.

Knows and understands:

• How consulting ties into project management, business analysis and business management.
• The barriers to solving problems or maximizing opportunities.
• How to present recommendations and influence action.
• The different structured process approaches for digital technology consulting.
• How to frame/define business problems objectively before solving them.
• How to discover hidden requirements using probing techniques to establish trust, using open and closed questions effectively, and avoiding leading questions.

A business analyst is responsible for assessing the business impact of change, capturing, analysing, and documenting requirements and supporting the communication and delivery of requirements with relevant stakeholders. They create detailed analysis of systems and make recommendations for improvement. They produce specifications of user requirements that enable software engineers to develop the right software solutions. They require a broad foundation of skills and knowledge to be able to be effective as their work incorporates all aspects of digital technology systems.

Be able to:

• Develop and apply modelling and analysis techniques to describe business problem scenarios and to help select solutions using a range of industry standard analysis techniques.
• Elicit and prioritise business requirements for a digital technology system using ‘industry best practice’ methods.
• Develop a clear, complete, unambiguous, and testable requirements specification, including functional, non- functional, data, user interface and security requirements.
• Model the ‘as is’ and future state for a business process using industry standard approaches and notation.
• Evaluate selected models against business objectives and system requirements.
• Use ‘industry’ standard tools to facilitate the analysis, documentation, and traceability of requirements.

Knows and understands:

• The use of requirements elicitation techniques and their relevance to given situations.
• The principles of requirements engineering and the importance of managing requirements.
• How to conduct a range of business/organisational analyses.
• The use of tools to support modelling and requirements engineering.
• How the selected models inter-relate with each other.
• How the products of analysis feed into the design and development of a system.

A cyber security analyst is responsible for the implementation, maintenance and support of the security controls that protect an organisation’s systems and data assets from threats and hazards. They ensure that security technologies and practices are operating in accordance with the organisation’s policies and standards to provide continued protection. They require a broad understanding of network infrastructure, software, and data to identify where threat and hazard can occur. They are responsible for performing periodic vulnerability assessments to evaluate the organisation’s ongoing security posture and will provide visibility to management of the main risks and control status on an ongoing basis. They respond to security incidents and implement resolution activities across the organisation.

Be able to:

• Analyse and evaluate security threats and vulnerabilities to planned and installed information systems or services and identify how these can be mitigated against.
• Perform security risk assessments for a range of information systems and propose solutions.
• Develop a security case against recognised security threats, and recommend mitigation, security controls and appropriate processes.
• Define and justify a user access policy for an information system given knowledge of the system architecture, security requirements and threat/risk environment. This should be in terms of what they can do, resources they can access, and operations they are allowed to perform.
• Perform a business impact analysis in response to a security incident and follow a disaster recovery plan to meet elements of a given business continuity policy.
• Conduct a range of cyber security audit activities to demonstrate security control effectiveness.

Knows and understands:

• The types of security (confidentiality, authentication; non-repudiation; service integrity) and security big picture (network security; host OS security; physical security).
• The main types of common attack techniques, including phishing, social engineering, malware, network interception, blended techniques, denial of service and theft.
• How to recognise and assess risk including performing a risk assessment.
• How to apply penetration testing effectively and how it contributes to assurance.
• The different approaches to risk treatment and management in practice.
• What the ‘cyber security culture’ in an organisation is, and how it may contribute to security risk.

The primary role of a data analyst is to collect, organise and study data to provide new business insight. They are responsible for providing up-to-date, accurate and relevant data analysis for the organisation. They are typically involved with managing, cleansing, abstracting and aggregating data across the network infrastructure. They have a good understanding of data structures, software development procedures and the range of analytical tools used to undertake a wide range of standard and custom analytical studies, providing data solutions to a range of business issues. They document and report the results of data analysis activities making recommendations to improve business performance. They need a broad grounding in technology solutions to be effective in their role.

Be able to:

• Import, cleanse, transform, and validate data with the purpose of understanding or making conclusions from the data for business decision making purposes.
• Present data visualisation using charts, graphs, tables, and more sophisticated visualisation tools.
• Perform routine statistical analyses and ad-hoc queries.
• Use a range of analytical techniques such as data mining, time series forecasting and modelling techniques to identify and predict trends and patterns in data.
• Report on conclusions gained from analysing data using a range of statistical software tools.
• Summarise and present results to a range of stakeholders making recommendations.

Knows and understands:

• The quality issues that can arise with data and how to avoid and/or resolve these.
• The processes involved in carrying out data analysis projects.
• How to use and apply industry standard tools and methods for data analysis.
• The range of data protection and legal issues.
• The fundamentals of data structures, database system design, implementation and maintenance.
• The organisation's data architecture.

The primary role of a network engineer is to design, install, maintain, and support communication networks within an organisation or between organisations. They need to maintain high levels of network performance and availability for their users, such as staff, clients, customers, and suppliers. They will understand network configuration, cloud, network administration and monitoring tools, and be able to give technical advice and guidance. As part of their role, they need to be proficient in technology solutions as they will analyse system requirements to ensure the network and its services operate to desired levels. They will need to understand the data traffic and transmission across the network, and they have a major role to play in ensuring network security.

Be able to:

• Plan, design, build and test a simple network to a requirement specification that includes hubs, switches, routers, and wireless user devices, applying appropriate security products and processes.
• Identify the key characteristics of a new network service and develop estimates of the expected traffic intensity and traffic load that the network must support.
• Determine the minimum network capacity of planned networks to meet network requirements.
• Design, build, test, configure and optimise a distributed network (more than 1 sub- net), including switches, routers, and firewalls to meet given requirements.
• Analyse network performance and troubleshoot typical problems in networks.
• Identify and evaluate network security risks and incorporate appropriate security products and processes into network designs to increase security, resilience, and dependability.

Knows and understands:

• The fundamental building blocks (e.g., routers, switches, hubs, storage, transmission) and typical architectures (e.g., server/client, hub/spoke) of computers, networks and the Internet.
• The main features of routing and Internet network protocols in use, their purpose and relationship to each other, including the physical and data link layer (e.g., https, HTTP, SMTP, SNMP, TCP, IP, etc.).
• The main factors that affect network performance (e.g., the relationship between bandwidth, number of users, nature of traffic, contention).
• Failure modes in protocols (e.g., why a protocol may ‘hang’ and the effect of data communication errors).
• The ways to improve performance (e.g., application of traffic shaping, changes to architecture to avoid bottlenecks, network policy that prohibit streaming protocols).
• The issues that may arise in the day-to-day operation of networks and how to resolve them.

The primary role of an enterprise architect is to define, maintain, and govern the overall structure of an organisation’s business processes, information systems, and technology landscape. The enterprise architect role operates at a strategic level, with responsibility for ensuring that IT systems align with business objectives and enable long-term organisational goals. They apply architectural principles across business, data, application, and technology domains, balancing current operational needs with future transformation. Enterprise architects typically work closely with senior stakeholders, business leaders, and delivery teams, and are accountable for guiding complex change initiatives across the enterprise.

Be able to:

• Develop and maintain enterprise architecture frameworks, roadmaps, and standards that align technology solutions with business strategy.
• Analyse business capabilities, processes, and requirements to identify opportunities for optimisation and digital transformation.
• Create and maintain architectural artefacts such as capability models, reference architectures, and solution blueprints.
• Provide architectural governance and assurance to ensure solutions comply with enterprise standards, policies, and regulatory requirements.
• Collaborate with stakeholders across business and technology teams to translate strategic objectives into actionable architecture decisions.
• Guide the selection and integration of platforms, applications, and technologies within complex enterprise environments.

Knows and understands:

• How to operate across business, data, application, and technology architecture domains.
• How enterprise architecture frameworks (such as TOGAF) are applied in practice.
• How organisations plan and manage large-scale change and digital transformation initiatives.
• How to align IT strategy and investment with business goals and capabilities.
• How to assess risks, dependencies, and impacts across interconnected systems.
• How to use and apply enterprise architecture tools, modelling techniques, and governance processes.

The primary role of IT Operations Manager (Cloud) is to ensure the reliable, secure, and efficient operation of cloud-based platforms and services that support business and digital services. This role is responsible for overseeing day-to-day operational performance while enabling scalability, resilience, and continuous improvement within cloud environments. IT Ops Management (Cloud) applies operational best practices across incident, problem, change, and service management, while working closely with engineering, security, and architecture teams to support modern, cloud-native systems. The role typically carries responsibility for service availability, operational risk, and cost efficiency in enterprise cloud environments.

Be able to:

• Manage and operate cloud infrastructure and services to meet agreed service levels, availability, and performance targets.
• Implement and oversee monitoring, alerting, and incident management processes to ensure rapid detection and resolution of operational issues.
• Apply operational controls, automation, and infrastructure-as-code practices to improve reliability and efficiency.
• Manage change, release, and deployment activities to minimise risk and service disruption in cloud environments.
• Ensure operational security, compliance, backup, and disaster recovery processes are embedded into cloud operations.
• Collaborate with development, platform, and architecture teams to support DevOps and SRE-aligned ways of working.

Knows and understands:

• How to operate and support cloud platforms and services across IaaS, PaaS, and SaaS models.
• How IT service management practices (such as ITIL) are applied within cloud and DevOps environments.
• How to monitor, troubleshoot, and optimise cloud-based systems for performance, availability, and cost.
• How to manage operational risk, resilience, and business continuity in cloud infrastructures.
• How security, identity, and access controls are implemented and maintained in cloud environments.
• How to use and apply cloud management, monitoring, automation, and configuration tools.

The primary role of someone in IT / Digital Futures (DevOps) is to enable the rapid, reliable, and sustainable delivery of digital services through the integration of development and operations practices. This role focuses on improving flow, quality, and resilience across the software delivery lifecycle by promoting automation, collaboration, and continuous improvement. Working at the intersection of engineering, operations, and digital transformation, DevOps practitioners support modern, cloud-native and platform-based environments while helping organisations adopt future-ready ways of working. They typically work across multiple teams, influencing culture, tooling, and delivery practices to accelerate innovation.

Be able to:

• Design and implement CI/CD pipelines to automate build, test, and deployment processes for digital services.
• Apply infrastructure-as-code and configuration management practices to enable repeatable and scalable environments.
• Embed monitoring, logging, and feedback mechanisms to improve system reliability and delivery performance.
• Promote DevOps principles, collaboration, and continuous improvement across development and operations teams.
• Support cloud-native, containerised, and microservices-based architectures.
• Enable secure and resilient delivery by integrating security and quality controls into delivery pipelines.

Knows and understands:

• How DevOps practices support modern digital and cloud-based service delivery.
• How continuous integration, continuous delivery, and automation are applied across the software lifecycle.
• How infrastructure-as-code, containerisation, and platform services are used in enterprise environments.
• How monitoring, observability, and feedback loops drive operational and delivery improvements.
• How to manage risk, reliability, and security within fast-paced delivery environments.
• How to use and apply DevOps toolchains, cloud platforms, and automation technologies.

Institute for Apprenticeships & Technical Education. Digital and Technology Solutions Professional (Integrated Degree). Reference: ST0119. Version: 1.1. Date updated: 13/05/2019. Approved for delivery: 26 March 2015. Route: Digital. Accessed 26-01-2023. URL: www.instituteforapprenticeships.org/apprenticeship-standards/digital-and-technology-solutions-professional-integrated-degree-v1-1