Google Links

Follow the links below to find material targeted to the unit's elements, performance criteria, required skills and knowledge

Elements and Performance Criteria

1. Prepare to design infrastructure
   • Analyse organisation’s operations to determine cyber security needs
   • Research and identify industry standard network security options and security technologies
   • Determine data types, security levels, mission-critical network servers and secure boundary requirements
2. Design and plan infrastructure
   • Design and document infrastructure requirements according to organisational requirements
   • Determine and document implementation plan and timeframes
   • Obtain tools, network access and data according to organisational requirements
   • Plan and document network security monitoring strategy according to organisational requirements
   • Distribute documentation to required personnel and seek and respond to feedback
3. Implement infrastructure
   • Establish and create network boundaries according to infrastructure plan requirements
   • Implement network and server technologies according to infrastructure plan requirements
   • Implement user security technologies according to infrastructure plan requirements
   • Set security levels and user access according to organisational requirements
   • Establish network security monitoring strategy according to plan requirements
   • Test deployment of security infrastructure and its components according to technical specifications and infrastructure plan requirements
   • Obtain and analyse test results, logs and user feedback
   • Adjust implemented technologies according to organisational requirements and user feedback

Performance Evidence

The candidate must demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including evidence of the ability to:

design and implement cyber security infrastructure and review results against organisational needs on at least two different occasions.

In the course of the above, the candidate must:

identify an organisation’s vulnerabilities, cyber security needs and data protection requirements

document findings, plan and processes.

---

Knowledge Evidence

The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including knowledge of:

features and implementation methodologies of cyber security

cyber security infrastructure features including:

application security

business continuity planning

disaster recovery planning

operational security (OPSEC)

threat vectors

organisational business processes and applicable cyber security requirements design and implementation

organisational procedures applicable to designing and implementing cybersecurity infrastructure, including:

documenting established requirements, risks and work performed

establishing requirements and features of cyber security infrastructure

establishing maintenance and alert processes

testing methods and procedures

security risks, and tolerance of risk in an organisation

industry standard cyber security providers

industry standards and regulations applicable to implementing cyber security infrastructure in an organisation

organisation, infrastructure and cyber security requirements.

---