Create New Assessment of the ICT service

  • Release version: Washingtondc
  • Updated February 27, 2025
  • 2 minutes to read

    • On the Create New Assessment of the ICT service form, fill in the fields.

    Table 1. Create New Assessment of the ICT service form
    Field Description
    SysID Unique 32-character GUID (Globally Unique ID) that identifies each assessment record in an instance. Provide this value if you want to update an existing record. Provide a value of -1 if you want to create a new record in the system.
    Name Name of the assessment in the <first-name.last-name> format.
    Description Description for the assessment.
    Number Unique identification number for the assessment that will be generated by the application. For example, TPA0001001. This field is auto-filled.
    Department Department that the assessment belongs to.
    Owner Name of the owner for the assessment.
    Business unit Name of the business unit that is associated with the assessment.
    Digital resilience information
    Contractual arrangement reference number Reference number used for the contractual arrangement.
    Identification code of the ICT third-party service provider Unique identifier code for the ICT third-party service provider. This field is auto-filled.
    Type of code to identify the ICT third-party service provider Type of code intended to identify the ICT third-party service provider. This field is auto-filled.
    Type of ICT services Category of the ICT services. Available options are:
    • ICT project management
    • ICT Development
    • ICT help desk and first level support
    • ICT security management services
    • Provision of data
    • Data analysis
    • ICT, facilities and hosting services (excluding Cloud services)
    • Computation
    • Non-Cloud Data storage
    • Telecom carrier
    • Network infrastructure
    • Hardware and physical devices
    • Software licensing (excluding SaaS)
    • ICT operation management (including maintenance)
    • ICT Consulting
    • ICT Risk management
    • Cloud services: IaaS
    • Cloud services: PaaS
    • Cloud services: SaaS
    Substitutability of the ICT third-party service provider Capability to interchange the ICT third-party service provider. Available options are:
    • Not substitutable
    • Easily substitutable
    • Medium complexity in terms of substitutability
    • Highly complex substitutability
    Reason if the ICT third-party service provider is considered not substitutable or difficult to be substitutable Factors that might make the ICT third-party service provider irreplaceable or challenging to replace.
    Is the ICT third party audited? Option to specify if the ICT third party has been audited. Available options are:
    • Yes
    • No
    Date of the last audit on the ICT third-party service provider Date of the last audit for the ICT third-party service provider.
    Existence of an exit plan Choice to specify the availability of an exit plan. Available options are:
    • Yes
    • No
    Possibility of reintegration of the contracted ICT service Choice to verify the feasibility of reincorporating the contracted ICT service. Available options are:
    • Easy
    • Difficult
    • Highly complex
    Impact of discontinuing the ICT services Choice to specify the impact of discontinuing the ICT services. Available options are:
    • Low
    • Medium
    • High
    • Assessment not performed
    Are there alternative ICT third-party service providers identified? Choice to indicate if any other ICT third-party service providers have been identified. Available options are:
    • Yes
    • No
    • Assessment not performed

    If you select the check box, then specify the following field value: Identification of alternative ICT TPP.
    Identification of alternative ICT TPP Supplementary details on the identification of alternative ICT third-party providers (TPP).