List the assessment methods to be used and the context and resources required for assessment. Copy and paste the relevant sections from the evidence guide below and then re-write these in plain English.
The candidate must demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including evidence of the ability to:
design and implement cyber security infrastructure and review results against organisational needs on at least two different occasions.
In the course of the above, the candidate must:
identify an organisation’s vulnerabilities, cyber security needs and data protection requirements
document findings, plan and processes.
The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including knowledge of:
features and implementation methodologies of cyber security
cyber security infrastructure features including:
application security
business continuity planning
disaster recovery planning
operational security (OPSEC)
threat vectors
organisational business processes and applicable cyber security requirements design and implementation
organisational procedures applicable to designing and implementing cybersecurity infrastructure, including:
documenting established requirements, risks and work performed
establishing requirements and features of cyber security infrastructure
establishing maintenance and alert processes
testing methods and procedures
security risks, and tolerance of risk in an organisation
industry standard cyber security providers
industry standards and regulations applicable to implementing cyber security infrastructure in an organisation
organisation, infrastructure and cyber security requirements.
Skills in this unit must be demonstrated in a workplace or simulated environment where the conditions are typical of those in a working environment in this industry.
This includes access to:
hardware, software and its components required in the design and implementation of cyber security infrastructure
an organisation’s operational details required for determining cyber security requirements
application and user security technologies require for the design and implementation of cyber security infrastructure
industry standard cyber security providers.
Assessors of this unit must satisfy the requirements for assessors in applicable vocational education and training legislation, frameworks and/or standards.