The global skills and competency framework for the digital world

Security, privacy and ethics SCPE Beta

Ensuring the protection of sensitive information, upholding privacy of data and individuals, and demonstrating ethical conduct within and outside the organisation.

SFIA 9 is in development

  • SFIA 9 planned for publication October 2024
  • This is subject to change before publication.

Guidance notes

Security, privacy and ethics in SFIA represent a progression from basic awareness to strategic leadership. It involves:

  • applying professional working practices and adhering to organisational rules
  • implementing standards and best practices
  • promoting a culture of security, privacy and ethical conduct
  • addressing ethical challenges, including those introduced by emerging technologies, such as AI
  • ensuring compliance with relevant laws and regulations
  • leading initiatives that embed security, privacy, and ethics into organisational culture and operations.

Effective management of security, privacy and ethics encompasses technical knowledge, ethical decision-making skills and the ability to balance competing priorities. It also involves creating an environment where these principles are embedded in all aspects of work.

As professionals advance, they are expected to take an active role in promoting ethical behaviour and securing sensitive information across all areas of work. At higher levels, individuals are responsible for developing strategies that balance operational needs with ethical considerations, ensuring long-term sustainability and trust.

Level 1 - Follow

  • Develops an understanding of the rules and expectations of their role and the organisation.

Level 2 - Assist

  • Has a good understanding of their role and the organisation’s rules and expectations. 

Level 3 - Apply

  • Applies appropriate professionalism and working practices and knowledge to work. 

Level 4 - Enable

  • Adapts and applies applicable standards, recognising their importance in achieving team outcomes.

Level 5 - Ensure, advise

  • Contributes proactively to the implementation of professional working practices and helps promote a supportive organisational culture.

Level 6 - Initiate, influence

  • Takes a leading role in promoting and ensuring appropriate culture and working practices, including the provision of equal access and opportunity to people with diverse abilities.

Level 7 - Set strategy, inspire, mobilise

  • Provides clear direction and strategic leadership for embedding compliance, organisational culture, and working practices, and actively promotes diversity and inclusivity.