Top
Previous Week Next Week

Week 3

4.2 Guidelines

4.2.1 Know the sources of codes of conduct:

Organisations

 

Professional

British Computer Society (BCS)

The BCS code of conduct has four key principles, 

  • Make IT for Everyone
  • What you know, learn what you dont
  • Respect the organisation or individual you work with
  • Keep IT real. Keep IT Professional. Pass IT on

These condes act as powerfull endorsements of individuals integrity and ethics whilst working as IT professionals. 

"Know IT yourself"
Using the link below, look further in to the 4 priniciples/codes that are used by the BCS. Create a powerpoint that explains these in more detail.

BCS Code of Conduct for members - Ethics for IT professionals | BCS

 

The Institution of Analysts and Programmers (IAP)

The Institution of Analysts and Programmers (IAP) is a professional body that supports both the public and its members by helping individuals enter the IT profession, providing technical expertise, and promoting high standards in software development. The IAP offers guidance on IT careers, particularly in systems analysis and programming, and advises on relevant training courses and qualifications, including recommending approved courses delivered by partner universities and private training providers, many of which contribute towards IAP membership or allow direct entry as a Graduate member (GradIAP).

In addition, the IAP provides technical assistance through its members, who work across all areas of business and industry and may be available for consultancy, with verified credentials listed in the Register of Consultants. The organisation also supports employers, clients, and the public by confirming members’ qualifications and membership grades. Alongside this, the IAP fosters Communities of Practice (COPs) focused on improving software for society, bringing together professionals with shared interests in areas such as cyber security, health, transport, cloud computing, artificial intelligence, robotics, IoT, defence, telecoms, and software development, helping to encourage collaboration, knowledge sharing, and professional development across the IT sector.

The IAP Code of Conduct covers 4 areas these are;

 - Duty to the Public

 - Duty to the Profession

 - Duties to the Institution of Analysts and Programmers

 - Duties to Clients and Employers

"Investigate And Present (IAP)"
Using the link below, look further in to the 4 priniciples/codes that are used by the IAP. Create a powerpoint that explains these in more detail.

iap.org.uk/code-of-conduct

 

Chartered Institute of Information Security (CIISec)

The Chartered Institute of Information Security (CIISec) is the world’s first cyber and information security body to receive Royal Charter status, highlighting its leadership in raising professional standards across the sector. It operates as an independent, not-for-profit organisation governed by its members and provides a trusted, central voice for the cyber and information security profession. Representing over 35,000 professionals at all stages of their careers, CIISec supports its community through programmes focused on professional development, recognition and career success. Its core objectives include promoting the advancement and sharing of knowledge for the public benefit, establishing and upholding high ethical and professional standards in the UK and internationally, and acting as an authoritative body for consultation and research on education and issues of public interest within cyber and information security.

THe CIISec has 3 areas of conduct,

 -  Maintain Professionalism

 - Act in an Ethical Manner

 - Promote Best Practice

"Investigate And Present (IAP)"
Using the link below, look further in to the 3 priniciples/codes that are used by the CIISec. Create a powerpoint that explains these in more detail.

Code of Conduct & Ethics - CIISec

 

Governmental.

Governmental codes of conduct and professional behaviour standards originate from:

  1. Primary legislation (Acts of Parliament).

  2. Government departments issuing policy and statutory guidance.

  3. Regulatory authorities (e.g. ICO, HSE).

  4. Official statutory codes of practice.

  5. Public sector conduct frameworks (e.g. Civil Service Code).

In digital support and IT roles, aligning codes of conduct with these governmental sources ensures lawful, ethical and high-quality professional practice.

 The focus in these bodies is to minimises risk to the public, to protect rights and freedoms of those linked to practices and contact with services that are offered by organisation ensuring that competence and accountability is kept so that organisations maintain integrity and trust.

 

 

4.2.2 Understand how guidelines in codes of conduct influence professional

Professional codes of conduct provide structured guidelines that shape behaviour in the workplace. They act as a bridge between organisational policies, legal requirements and day-to-day professional practice. By setting clear expectations, codes of conduct ensure individuals operate within defined standards, protecting both the public and the organisation.

In sectors such as IT, cybersecurity and digital support services, professional conduct is often guided by organisations such as Chartered Institute for IT and Chartered Institute of Information Security, whose codes emphasise lawful practice, competence, integrity and responsibility.

This ensures quality of work by:

  • Minimising risk to the public - reducing data breaches, system failures, and misuse of information.

  • Acting with competence and integrity - ensuring decisions are based on skill, ethical judgement and compliance with the law.

 

Behaviour

Meeting Deadlines

Codes of conduct often require professionals to act diligently and responsibly. This includes managing time effectively and delivering work within agreed timescales.

How Guidelines Influence Behaviour

  • Professionals are expected to plan workloads realistically.

  • They must communicate early if delays are likely.

  • They must not compromise quality or legal compliance simply to meet a deadline.

Linked Example

An IT support technician is tasked with deploying a software security patch across a school network. The organisation’s policy requires testing before full rollout.

If the technician rushes the process to meet a deadline without testing, it could:

  • Cause system instability.

  • Disrupt teaching and learning.

  • Create new vulnerabilities.

By following procedures properly:

  • The patch is tested in a controlled environment.

  • Risks are assessed.

  • Documentation is completed.

This approach minimises risk to users and ensures the technician demonstrates competence and integrity. Meeting deadlines is important, but meeting them professionally without bypassing safeguards is what ensures quality.

Acting with Competence and Integrity

Codes of conduct require individuals to:

  • Work within the limits of their expertise.

  • Seek support when necessary.

  • Undertake continuing professional development.

  • Avoid conflicts of interest.

Example

If an IT professional is asked to configure a firewall but lacks sufficient knowledge, acting with integrity means:

  • Acknowledging the limitation.

  • Requesting training or specialist support.

  • Not guessing or implementing unsafe configurations.

This ensures:

  • Systems remain secure.

  • The public is protected.

  • Professional standards are upheld.

Competence ensures quality; integrity ensures ethical decision-making.

• meeting deadlines

• effective communication

Maintaining Confidentiality and Trust

Confidentiality is central to most professional codes of conduct, particularly in digital and data-driven environments.

How Guidelines Influence Behaviour, Professionals must:

  • Protect sensitive information.

  • Access data only when authorised.

  • Avoid sharing information without lawful basis.

  • Follow secure data handling procedures.

Linked Example

A digital support technician has access to staff and student personal data stored on a management system. The code of conduct requires:

  • Logging out of systems when not in use.

  • Not discussing personal data in public spaces.

  • Encrypting devices containing sensitive information.

If confidentiality is breached:

  • Individuals may suffer harm (identity theft, reputational damage).

  • The organisation could face legal penalties.

  • Public trust may be lost.

By adhering to professional standards and legislation such as the Data Protection Act, the technician ensures:

  • Risk to the public is minimised.

  • Work is carried out lawfully.

  • Trust between service provider and user is maintained.

Trust is fundamental in professional relationships. Without it, systems cannot function effectively.


Last Updated
2026-02-13 11:18:34
English and Maths

English


Maths


Stretch and Challenge

Stretch and Challenge


Homework

Homework


Equality and Diversity Calendar
How to's

How to's Coverage




Links to Learning Outcomes

Links to Assessment Criteria
 

Files that support this week

| | | | |

Next
Prev