Assessment Guide for Bronze

The Bronze level assessment evaluates your organisation’s foundational digital and cybersecurity capabilities. This guide provides an overview of the question set, scoring methodology, and key considerations to help you prepare effectively.

Overview of the Assessment Questions

The Bronze assessment includes 18 core questions across five architecture areas: Business, Data, Application, Technology, and Security. These questions measure your organisation’s ability to establish foundational maturity and compliance readiness.

Question Breakdown by Architecture Area

  • Business Architecture: 4 questions Focus on aligning digital strategy, digitising core processes, building digital skills, and ensuring compliance with industry regulations.

  • Data Architecture: 3 questions Address secure data storage, encryption, and governance practices.

  • Application Architecture: 3 questions Assess secure deployment, tracking, and management of applications.

  • Technology Architecture: 4 questions Evaluate infrastructure reliability, network security, cloud usage, and device/software inventory management.

  • Security Architecture: 4 questions Examine foundational cybersecurity controls, data protection, incident response, and compliance.

Scoring Rules for Bronze

The scoring methodology ensures organisations meet minimum thresholds for foundational maturity and compliance.

  1. Overall Pass Mark:

    • Organisations must achieve a minimum overall score of 50%.

    • With a maximum possible score of 54 (18 questions × 3), the passing threshold is 27 points (rounded up to 33).

  2. Minimum Architecture Area Scores:

    • There are no minimum criteria via section for the Bronze level.

  3. Question-Level Compliance Thresholds:

    • There are no minimum criteria via section for the Bronze level.

How the Scoring Works

  • Scoring Scale (0–3):

    • 0: Not considered

    • 1: Defined

    • 2: Managed

    • 3: Optimised

  • Scores for each question are tallied for a total percentage.

  • Scores below compliance thresholds highlight areas needing immediate attention.

Steps to Complete the Assessment

  1. Prepare Your Team:

    • Include representatives from IT, compliance, and business operations.

    • Gather necessary documentation (e.g., policies, training records, process descriptions).

  2. Work Through the Questions:

    • Address each question systematically, recording your organisation's maturity level (0–3).

    • Document observations and opportunities for improvement where relevant.

  3. Review and Submit:

    • Check scores for accuracy and completeness before submitting the assessment.

    • Download your assessment results for analysis.

  4. Set Improvement Targets:

    • Use your results to identify gaps and prioritise areas for improvement.

Tips for Success

  • Collaborate Across Teams: Ensure responses reflect input from all relevant stakeholders.

  • Use Documentation: Support scores with evidence such as policies, training records, or audit results.

  • Prioritise Compliance Questions: Focus on meeting compliance thresholds for critical questions.

Next Steps

After completing the assessment, proceed to Pathway to Improvement for Bronze for targeted guidance on addressing gaps and progressing towards Silver-level maturity.

PreviousOverview and PurposeNextPathway to Improvement for Bronze

Last updated

Was this helpful?