UNICEF's Holistic audits on ICT4D Holistic Technical Assessments for ICT4D
  1. 🧗 Process
  2. Recommended Skillsets
  • Welcome
  • Introduction to the Project
    • The Team
    • Who We Aim to Help
  • Get Started
  • Four Lenses
  • 🧑‍🤝‍🧑 People
    • Foundations
    • Stakeholder Experiences
    • Beyond Technology
    • Threats to Success
  • 🧗 Process
    • Holistic Assessment Approach
    • Threat Modeling and Mitigations
    • Software Bill of Materials
    • An Iterative Process
    • Recommended Skillsets
    • Assessment Methodology
      • Assets for Review
      • ⬇️ Request of Assets PDF
      • Application Architecture
      • Source Code Security
      • Vulnerability Scanning
      • Penetration Testing
      • ⬇️ Penetration Testing Slide Deck
      • Development+Security+Operations
      • DevSecOps Checklist
      • ⬇️ DevSecOps Checklist Slide Deck
    • ⬇️ Sample Technical Assessment Template
  • 🚀 Technology
    • Our Technical Findings
    • Management Strategies
    • Source Code Conundrums
    • Physical Realities
  • 🏫 Partners
    • Choosing a Partner
    • Checklist for Success
    • Partner Assessments
      • OpenCRVS “The Turn-Key Solution”
      • DHIS2 “The Open Platform”
      • “The Custom Software Development Kit”
      • “The Cloud Software-as-a-Service”
    • Managing Risk at Scale
    • Additional Resources
  • Glossary
  • 📸 Attributions
  • ©️ LICENSE

On this page

  • Recommended Skillsets
  • Edit this page
  • Report an issue
  1. 🧗 Process
  2. Recommended Skillsets

Recommended Skillsets

Most relevant for 🔥 Advisors

When performing a holistic assessment of a web-based technology product or platform, knowledge of the following areas are useful:

  • Development best practices: version control, testing, structuring code for maintainability, dependency management and updates
  • Web application deployment best practices: content security policies, cookie and session handling, SSL configuration
  • Evaluating third-party service providers: for reliability, security and data-handling practices
  • Server deployment best practices: software installation and updates, infrastructure as code, firewall configuration, continuous deployment
  • Software community health review: contributor diversity, bug reporting and public issue handling, vulnerability disclosures, developer and user documentation
An Iterative Process
Assessment Methodology
 

Holistic Technical Assessments for ICT4D © 2024 by UNICEF
Licensed under CC BY 4.0 | Privacy policy
UNICEF, for every child

  • Edit this page
  • Report an issue