The global skills and competency framework for the digital world

Information management IRMG

The overall governance of how all types of information, structured and unstructured, whether produced internally or externally, are used to support decision-making, business processes and digital services. Encompasses development and promotion of the strategy and policies covering the design of information structures and taxonomies, the setting of policies for the sourcing and maintenance of the data content, and the development of policies, procedures, working practices and training to promote compliance with legislation regulating all aspects of holding, use and disclosure of data.


Defined at these levels: 4 5 6 7

Information management: Levels 1-3

This skill is not typically observed when working at these levels of responsibility.

Information management: Level 4

Understands and complies with relevant organisational policies and procedures, taking responsibility for assessing and managing risks around the use of information. Ensures that information is presented effectively. Ensures that effective controls are in place for internal delegation, audit and control and that the board receives timely reports and advice that will inform their decisions.

Information management: Level 5

Drafts and maintains the policy, standards and procedures for compliance with relevant legislation. Understands the implications of information, both internal and external, that can be mined from business systems and elsewhere. Makes business decisions based on that information, including the need to make changes to systems. Reviews proposals for new digital initiatives and provides specialist advice on information management, including advice on and promotion of collaborative working and assessment and management of information-related risk. Creates and maintains an inventory of information assets, which are subject to relevant legislation. Prepares, reviews and submits periodic notification of registration details to the relevant regulatory authorities. Ensures that formal information access requests and complaints are dealt with according to approved procedures.

Information management: Level 6

Maintains and communicates the organisation's strategy for managing information, ensuring that uniformly recognised and accepted data definitions are developed and applied throughout the organisation. Ensures that the business processes and information required to support the organisation are defined and devises appropriate standards, processes and data architectures. Identifies the impact of any relevant statutory, internal or external regulations on the organisation's use of information and develops strategies for compliance. Coordinates information resources to support digital services and analytics, whilst maintaining the principles of professional standards, accountability, openness, equality and diversity and clarity of purpose. Implements systems and controls to measure performance, and manage risk.

Information management: Level 7

Specifies at a strategic level the business functions and data subjects needed to support future business and digital services, thereby enabling the development of an Information Architecture. Establishes and communicates the organisation's digital strategy, developing it as an integrated part of the business strategy. Directs digital resources, to create value for the stakeholders by improving the performance of the organisation, whilst maintaining the principles of professional standards, accountability, openness, equality and diversity and clarity of purpose. Responsible for compliance with regulations, standards and codes of good practice relating to information and records management, information assurance and data protection.