This hub brings together authoritative standards, frameworks, and official guidance used across VTI programmes. It supports secure systems design, governance, risk management, and applied projects. Programme-specific recommendations appear first, followed by a shared “Core Standards” section.
Jump to: By Programme • Core Standards • Data & Official Publications • How to Use Standards
By Programme
Select your programme to view the most relevant standards and frameworks used in coursework, labs, and capstones.
BSc Information & Communication Technology
Secure systems, governance, and applied ICT implementation.
- NIST CSF (risk & controls)
- OWASP Top 10 (secure web design)
- MITRE ATT&CK (threat modelling)
BSc Technology Management
Technology governance, risk, and policy-aligned decision-making.
- NIST CSF (governance & risk language)
- World Bank OKR (ICT policy & guidance)
- PIOJ Publications (national context & evidence)
ASc Computer Systems Technology
Systems, networking, operations, and security fundamentals.
- NIST CSF (baseline controls)
- MITRE ATT&CK (defence mapping)
ASc Software Programming
Secure coding and web application security practice.
- OWASP Top 10 (secure coding priorities)
- NIST CSF (security governance vocabulary)
Advanced Diploma – Cyber Security Analyst
Threat modelling, detection frameworks, and security controls.
Diplomas & Certificates
Practical standards for safe practice in labs and workplace readiness.
- OWASP Top 10 (secure web practice)
- NIST CSF (baseline security controls)
Core Standards & Frameworks
These are widely used, authoritative references across ICT, software engineering, and cybersecurity. They are suitable for citing as official guidance in assignments, security plans, and systems design documentation.
- NIST Cybersecurity Framework (CSF) – Common language for cybersecurity risk management and controls.
- OWASP Top 10 – Priority risks and mitigations for secure web application development.
- MITRE ATT&CK – Threat actor techniques and tactics for defensive planning and detection mapping.
Data & Official Publications
Use these sources when projects require official statistics, national/regional context, or evidence for ICT planning and technology management work.
- Government of Jamaica Open Data Portal – Official open datasets for analysis and applied projects.
- Planning Institute of Jamaica (PIOJ) – Publications – National reports supporting policy and programme context.
- World Bank Open Knowledge Repository – Research-backed policy publications, reports, and guidance on ICT and development.
How to Use Standards in Coursework
- Use standards as evidence: Cite frameworks (e.g., NIST CSF) to justify controls, policies, and design decisions.
- Use security lists as checklists: Apply OWASP Top 10 to assess web applications, reports, and code reviews.
- Use threat frameworks for defence: Map risks and controls using MITRE ATT&CK for security labs and capstones.
- Use official data for context: Support arguments with Jamaica/Caribbean datasets and policy publications where relevant.
Need scholarly sources to support standards-based work? Use Find Research or consult your programme guide.