List the assessment methods to be used and the context and resources required for assessment. Copy and paste the relevant sections from the evidence guide below and then re-write these in plain English.
ELEMENT | PERFORMANCE CRITERIA |
Elements describe the essential outcomes. | Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Plan to implement wireless network security | 1.1 Research and evaluate organisational and regulatory security policies that have been used to benchmark acceptable network security standards 1.2 Assess customer requirements and needs against regulatory security compliance and work health and safety (WHS) considerations 1.3 Produce a plan with security solution documentation for future growth and security needs |
2. Design, implement and test guest access services | 2.1 Analyse and select the appropriate architecture for guest access services 2.2 Produce a map and set up guest access accounts 2.3 Configure WLAN controller authorisation 2.4 Configure the anchor and internal controllers 2.5 Troubleshoot guest access issues |
3. Design, implement and test the security of wireless client devices | 3.1 Design and configure authentication of clients and management frame protection on clients and controllers 3.2 Configure access control servers for integration with wireless network 3.3 Configure client- and server-side digital certificate services 3.4 Troubleshoot secure wireless connectivity services |
4. Design, implement and test the integration of wireless network with organisational network admission control systems | 4.1 Analyse network admission control architectures to assess the feasibility of network integration 4.2 Analyse the high-level authentication process flow to ensure compatible integration 4.3 Configure and test the wireless controller for admission control 4.4 Troubleshoot integration issues of network with access control |
5. Evaluate and plan secure wireless connectivity services | 5.1 Configure the intrusion detection system (IDS) to monitor the network activities for malicious activities or policy violations 5.2 Analyse the report produced by the IDS to review threat-mitigation strategies 5.3 Update security solution plan to mitigate wireless vulnerabilities to ensure network integrity |
6. Manage the requirements to integrate the WLAN with advanced security platforms | 6.1 Evaluate end-to-end security solutions and assess how they integrate with the planned wireless solutions 6.2 Analyse the firewall configuration requirements of WLANs to ensure compliance with organisational policies 6.3 Configure and test the WLAN controllers for wired and wireless intrusion prevention and detection system (IPDS) security protection |
Evidence of the ability to:
conduct research and produce a security solutions plan
evaluate, design and implement a wireless local area network (WLAN) site security plan
evaluate end-to-end security solutions and assess their integration with the planned wireless solutions
use network tools to test wireless controllers and intrusion prevention and detection system (IPDS) solutions.
Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.
To complete the unit requirements safely and effectively, the individual must:
explain configuration, verification and troubleshooting procedures to undertake:
router operation and routing
virtual local area network (VLAN) switching and inter-switching communications
outline iDevice Operating System (iOS) and internet protocol (IP) networking models
explain intrusion prevention system (IPS) and intrusion detection system (IDS) security protection
outline threat mitigation strategies
summarise the following aspects of wireless, including:
current regulations, standards and certifications
deployment schemes
network security technology
network topologies, architectures and elements
networking protocols
summarise WLAN with reference to:
advanced security platforms
devices, their specification and use
radio frequency characteristics and their measuring techniques.
Gather evidence to demonstrate consistent performance in conditions that are safe and replicate the workplace. Noise levels, production flow, interruptions and time variances must be typical of those experienced in the networking industry, and include access to:
a site or prototype where network installation may be conducted
hardware and software
organisational guidelines
live network
stand-alone and lightweight WLAN controllers and access points (AP)
hardware and software WLAN site survey tools
hardware and software IDS and IPS.
Assessors must satisfy NVR/AQTF assessor requirements.