Description

This qualification provides the skills and knowledge for an individual to manage complex and high-level ICT security systems and components. The qualification has a robust ICT technical base with appropriate security units aligned to the Certified Information Systems Security Professional (CISSP) and the IT Security Essential Body of Knowledge (EBK).

CISSP is an independent information security certification governed by the International Information Systems Security Certification Consortium (ISC).

EKB is a Competency and Functional Framework for IT Security Workforce Development. The EBK characterises the IT security workforce and provides a national baseline representing the essential knowledge and skills that IT security practitioners should have to perform specific roles and responsibilities.

The US Department of Homeland Security's (DHS), National Cyber Security Division worked with subject matter experts from government, the private sector, and academia to develop an umbrella framework that establishes a national baseline representing the essential knowledge and skills IT security practitioners must have to perform their jobs. The IT Security EBK builds directly on established work and is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, and defines primary functional perspectives to help advance the IT security training and certification landscape as we strive to ensure that we have the most qualified and appropriately trained IT security workforce possible.

In previous versions of the ICA05 Training Package, the security of networks and systems was a priority and a number of units in the areas of risk management, websites and privacy were developed. These have been included in Advanced Diploma core along with several more traditional Property Services security units. A number of server, network and interface electives are offered to allow a further level of specialisation as required. The facility for selecting electives from ICA05 and other Training Packages enables other ICT oriented skill areas (e.g. programming or database development) or broader business units to be included.

New units relating to e-security have been added at AQF level 4 that complement and extend security as a more holistic approach throughout the 'systems life cycle'. A new unit, ICAS6254A Manage IT security, has been added to the core units at the AQF level 6 to provide a holistic approach to management of e-security.

Consideration should be given to selecting these units as electives where they are relevant to workplace roles.

This qualification also provides a logical next step as a capstone qualification for ICT Diploma graduates particularly those that have progressed through the networking stream and AQF 3 to AQF 5 pathway. This qualification is particularly relevant to those that have developed technical specialisations in networking but an emphasis on the E-security units at the Diploma level. It is also possible to transition from other Diploma qualifications (e.g. Software Development or Systems Analysis and Design or Website development or General) if an appropriate selection of electives have been chosen especially with a focus on the E-security units.

Pathway

An appropriate pathway for this qualification is from the ICA50408 Diploma of Information Technology (Networking)

Job Roles

Possible job titles include:

Database Security Expert

E-risk Manager

E-security Specialist

ICT Security Consultants

ICT Security Specialist

Information Risk Manager (IRM)

Internal Computer Audit Specialist

IT Security Analyst/Engineer

IT Security Specialist

Lead Security Analyst

Security Engineer

Senior Software Engineer (Security)

Systems Security Analyst

Web Security Administrator

Qualification structure

To attain the ICA60308 Advanced Diploma of Information Technology (E-security) 17 units must be achieved:

12 core units; plus

5 elective units

Achieve 12 Core Units

Core

ICAA5056B Prepare disaster recovery and contingency plans

ICAA6052B Design an IT security framework

ICAA6053B Design system security and controls

ICAB5159C Build a security shield for a network

ICAB5237B Build a high performance security perimeter

ICAB5238B Build a highly secure firewall

ICAI5152B Implement risk management processes

ICAI5252A Develop, implement and evaluate an incident response plan

ICAI5250A Develop, implement and evaluate system and application security

ICAS5192B Configure an internet gateway

ICAS6254A Manage IT security

PSPPM601B Direct complex project activities

Achieve 3 elective units chosen from the ICA60308 electives list below which have not previously counted in a Diploma qualification

Electives

ICAA5044C Develop system infrastructure design plan

ICAD5092C Update and document operational procedures

ICAI5098C Install and manage complex networks

ICAI5100C Build an internet infrastructure

ICAI5176C Install and configure router

ICAI5196C Implement secure encryption technologies

ICAI5197C Install and maintain valid authentication processes

ICAI5253A Implement and evaluate systems for regulatory and standards compliance

ICAI6187B Implement change management processes

ICTTC168A Design and implement an enterprise VoIP&Unified Communications

PRSSM504A Prepare security risk management plan

PRSTS301A Identify technical security requirements

Achieve 2 elective units chosen from the following sources, which have not previously counted in a Diploma qualification (listed in recommended order)

ICA60308 electives list; and/or

ICA05 Information and Communications Technology Training Package or BSB07 Business Services Training Package at Diploma or Advanced Diploma; and/or

any other Training Package at Advanced Diploma (to a maximum of 2 units) based on documented industry or enterprise needs

Not Applicable

Not Applicable

Employability skills summary

ICA60308 Advanced Diploma of Information Technology (E-security)

The following table contains a summary of the employability skills required for a Security Consultant. The employability skills facets described here are broad industry requirements that may vary depending on qualification packaging options.