QGEA Reporting requirements
Some Queensland Government Enterprise Architecture (QGEA) policies contain reporting requirements. These are clearly noted in each policy.
Generally, reporting will only apply to departments, and to government bodies in scope of specific policies with broader applicability. See How to apply the QGEA for more.
As per ICT profiling standard
Departments must report awards made to Small to Medium Enterprises (SMEs) under the SME Access incentive in the ICT industry providing innovative solutions up to the value of $500,000 (inclusive of GST). To assess the benefits of this change to the SME Scheme the following information is required:
Quarterly - March, June, September, December
Provide the department’s or Queensland Government ICT service provider’s draft or endorsed information management initiatives.
Supporting guidance is available in Information security requirements and responsibilities and the Information management work plan guideline.
31 July every year
1 (a) For the financial year ending 30 June 2019:
30 October 2019
1 (b) From 2020, for each financial year ending 30 June:
|Annually by 30 September|
2 Communicate incident response activities and threat intelligence to the Queensland Government Information Security Virtual Response Team as per the QGEA Information security incident reporting standard.