This section describes the essential skills and knowledge and their level required for this unit

Skill requirements

Look for evidence that confirms skills in

applying legislation regulations and policies relating to security risk management plans

using evaluation and deductive reasoning

undertaking problem solving and decision making

using communication with diverse stakeholders involving presentation listening questioning paraphrasing clarifying summarising

reading and analysing the complex information in standards legislation and security plans

writing reports requiring formality of language and structure

using computer technology to gather and analyse information and prepare reports

using numerical graphical and statistical information

representing mathematical information in a range of formats to suit the information and the purpose

responding to diversity including gender and disability

applying procedures relating to occupational health and safety and environment in the context of developing security risk management plans

Knowledge requirements

Look for evidence that confirms knowledge and understanding of

legislation regulations policies procedures and guidelines relating to security risk management such as

occupational health and safety

public service acts

Crimes Act and Criminal Code

Freedom of Information Act

Privacy Act

fraud control policy

protective security policy

Australian Government Information Security Manual ISM

Protective Security Policy Framework

Australian standards quality assurance and certification requirements

international treaties and protocols

crossjurisdictional protocols

organisations strategic objectives

national strategic objectives

formats for different types of reports

costbenefit analysis techniques

equal employment opportunity equity and diversity principles

public sector legislation such as occupational health and safety and environment in the context of security risk assessment

The Evidence Guide specifies the evidence required to demonstrate achievement in the unit of competency as a whole It must be read in conjunction with the Unit descriptor Performance Criteria the Range Statement and the Assessment Guidelines for the Public Sector Training Package

Units to be assessed together

Prerequisite units that must be achieved prior to this unitNil

Corequisite units that must be assessed with this unitNil

Coassessed units that may be assessed with this unit to increase the efficiency and realism of the assessment process include but are not limited to

PSPETHCB Promote the values and ethos of public service

PSPETHC501B Promote the values and ethos of public service

PSPGOVB Develop client services

PSPGOV502B Develop client services

PSPGOVB Undertake research and analysis

PSPGOV504B Undertake research and analysis

PSPLEGNB Promote compliance with legislation in the public sector

PSPLEGN501B Promote compliance with legislation in the public sector

PSPSECA Assess security risks

PSPSEC501A Assess security risks

PSPSECA Implement and monitor security risk management plans

PSPSEC503A Implement and monitor security risk management plans

Overview of evidence requirements

In addition to integrated demonstration of the elements and their related performance criteria look for evidence that confirms

the knowledge requirements of this unit

the skill requirements of this unit

application of the Employability Skills as they relate to this unit see Employability Summaries in Qualifications Framework

security risk management plans developed in a range of or more contexts or occasions over time

Resources required to carry out assessment

These resources include

legislation policy procedures and protocols relating to security risk management plans

Australian Government Information Manual ISM

Protective Security Policy Framework

case studies and workplace scenarios to capture the range of situations likely to be encountered when developing security risk management plans

Where and how to assess evidence

Valid assessment of this unit requires

a workplace environment or one that closely resembles normal work practice and replicates the range of conditions likely to be encountered when developing security risk management plans including coping with difficulties irregularities and breakdowns in routine

security risk management plans developed in a range of or more contexts or occasions over time

Assessment methods should reflect workplace demands such as literacy and the needs of particular groups such as

people with disabilities

people from culturally and linguistically diverse backgrounds

Aboriginal and Torres Strait Islander people

women

young people

older people

people in rural and remote locations

Assessment methods suitable for valid and reliable assessment of this competency may include but are not limited to a combination of or more of

case studies

portfolios

questioning

scenarios

simulation or role plays

authenticated evidence from the workplace andor training courses such as security risk management plan

For consistency of assessment

Evidence must be gathered over time in a range of contexts to ensure the person can achieve the unit outcome and apply the competency in different situations or environments

Risks/threats may be:

Risk review includes:

Acceptable risks are:

Unacceptable risks are:

Treatment options may include:

Countermeasures may include:

Likelihood of risk may be determined through analysis of:

Consequences may include:

Continuity plans:

Level of risk may be:

Cost-benefit analysis may be against:

Stakeholders may include:

Threat assessment:

Risk exposure is: