Scope of Work

The Expert will be responsible for:

• Architecting a comprehensive IT governance framework covering infrastructure, data management, cybersecurity, and interdepartmental digital coordination.
• Developing policies for digital authentication and identity management, including the implementation roadmap of a secure electronic signature policy to enhance authentication and transaction security.
• Designing a contingency framework for IT asset protection, covering risk mitigation, disaster recovery, and business continuity strategies.
• Designing a master procurement policy that incorporates DepEd’s strategic priorities, interoperability standards, and cost-benefit analysis to guide strategic IT investments.
• Providing policy advisory and technical expertise in response to internal and external inquiries related to IT governance, cybersecurity, regulatory compliance, and digital infrastructure.
• Ensuring alignment with national and global IT governance standards, fostering compliance with data privacy laws, cybersecurity mandates, and international best practices.
• Developing intra-departmental capacity (through seminars, trainings, documentation, etc.) within ICTS and relevant DepEd offices/bureaus (e.g., Curriculum and Teaching strand, Bureau of Human Resources and Organizational Development, Office of Strategic Management, Office of the Secretary) and identifying “digitalization champions” across DepEd to sustain the enforcement of the governance framework and set of overarching policies on IT governance

Detailed Tasks and/or Expected Output

The Expert will undertake the following key responsibilities within a six-month period:

• Drafting of the 2026-2028 Information Systems Strategic Plan (ISSP): Drafting the ISSP based on documentation and data provided by strategic management and ICT units.
• Digital Identity and Authentication Governance: Establishing a policy for electronic signatures, multi-factor authentication, and credential lifecycle management.
• Cloud and Data Management Policies: Designing guidelines for cloud adoption, data retention, access controls, and interoperability across systems.
• Technology Donation and Third-Party IT Integration Framework: Developing protocols for evaluating, accepting, and integrating external IT donations while ensuring compliance with government procurement regulations.
• Disaster Resilience and Business Continuity Planning: Crafting a risk-based approach to IT infrastructure resilience, ensuring effective disaster recovery mechanisms.
• Strategic IT Procurement and Lifecycle Management: Establishing an evidence-based procurement methodology considering obsolescence cycles, emerging technology trends, and cost-effectiveness.
• Interdepartmental and Cross-Sector Collaboration: Facilitating policy coordination among intradepartmental units to ensure seamless integration with national and sectoral digital transformation strategies.

The Expert will be responsible for delivering the following outputs to Client and DepEd:

• Inception report- Baseline IT Governance Assessment: A comprehensive review of existing IT governance structures, cybersecurity resilience, and policy gaps.
• Drafts and Finalized IT Policies: Policies on digital authentication, cybersecurity (strategic level), account management, procurement frameworks, contingency planning, and data governance.
• Implementation Roadmap: A structured, phased deployment strategy for institutionalizing IT governance improvements.
• Interim report- Drafts of all policy documentation and status updates on onboarding DepEd staff for capacity development
• Final report- Strategic Review and Recommendations: A synthesized analysis of governance enhancements, policy efficacy, and long-term strategic recommendations.

Minimum Qualification Requirements

The ideal candidate/s will possess:

• A minimum of five (5) years of high-level experience in IT policy development, governance, and digital transformation strategy.
• Extensive knowledge of global IT governance frameworks, cybersecurity protocols, and emerging technologies.
• Demonstrated expertise in regulatory compliance, particularly in public sector IT governance. Strong analytical, strategic planning, and stakeholder engagement skills.
• Preferred Qualifications: Candidates demonstrating two or more of the following criteria will be given preference:
• Experience in legislative or rule-making processes related to IT governance.
• Technical proficiency in SQL and data management systems.
• Experience in developing and implementing ISSPs or similar strategic ICT plans.
• Proven ability to design and enforce IT governance policies for large-scale organizational management.

Please refer to job description.