Unit of Competency Mapping – Information for Teachers/Assessors – Information for Learners

ICTNWK607 Mapping and Delivery Guide
Design and implement wireless network security

Version 1.0
Issue Date: March 2024


Qualification -
Unit of Competency ICTNWK607 - Design and implement wireless network security
Description
Employability Skills
Learning Outcomes and Application This unit describes the skills and knowledge required to mitigate security threats to a wireless local area network (WLAN) by implementing security standards and policies.It applies to individuals with advanced information and communications technology (ICT) skills who are working as wireless help desk support technicians, wireless network support specialists and wireless network engineers.No licensing, legislative or certification requirements apply to this unit at the time of publication.
Duration and Setting X weeks, nominally xx hours, delivered in a classroom/online/blended learning setting.

Gather evidence to demonstrate consistent performance in conditions that are safe and replicate the workplace. Noise levels, production flow, interruptions and time variances must be typical of those experienced in the networking industry, and include access to:

a site or prototype where network installation may be conducted

hardware and software

organisational guidelines

live network

stand-alone and lightweight WLAN controllers and access points (AP)

hardware and software WLAN site survey tools

hardware and software IDS and IPS.

Assessors must satisfy NVR/AQTF assessor requirements.

Prerequisites/co-requisites
Competency Field
Development and validation strategy and guide for assessors and learners Student Learning Resources Handouts
Activities
Slides
PPT
Assessment 1 Assessment 2 Assessment 3 Assessment 4
Elements of Competency Performance Criteria              
Element: Plan to implement wireless network security
  • Research and evaluate organisational and regulatory security policies that have been used to benchmark acceptable network security standards
  • Assess customer requirements and needs against regulatory security compliance and work health and safety (WHS) considerations
  • Produce a plan with security solution documentation for future growth and security needs
       
Element: Design, implement and test guest access services
  • Analyse and select the appropriate architecture for guest access services
  • Produce a map and set up guest access accounts
  • Configure WLAN controller authorisation
  • Configure the anchor and internal controllers
  • Troubleshoot guest access issues
       
Element: Design, implement and test the security of wireless client devices
  • Design and configure authentication of clients and management frame protection on clients and controllers
  • Configure access control servers for integration with wireless network
  • Configure client- and server-side digital certificate services
  • Troubleshoot secure wireless connectivity services
       
Element: Design, implement and test the integration of wireless network with organisational network admission control systems
  • Analyse network admission control architectures to assess the feasibility of network integration
  • Analyse the high-level authentication process flow to ensure compatible integration
  • Configure and test the wireless controller for admission control
  • Troubleshoot integration issues of network with access control
       
Element: Evaluate and plan secure wireless connectivity services
  • Configure the intrusion detection system (IDS) to monitor the network activities for malicious activities or policy violations
  • Analyse the report produced by the IDS to review threat-mitigation strategies
  • Update security solution plan to mitigate wireless vulnerabilities to ensure network integrity
       
Element: Manage the requirements to integrate the WLAN with advanced security platforms
  • Evaluate end-to-end security solutions and assess how they integrate with the planned wireless solutions
  • Analyse the firewall configuration requirements of WLANs to ensure compliance with organisational policies
  • Configure and test the WLAN controllers for wired and wireless intrusion prevention and detection system (IPDS) security protection
       


Evidence Required

List the assessment methods to be used and the context and resources required for assessment. Copy and paste the relevant sections from the evidence guide below and then re-write these in plain English.

ELEMENT

PERFORMANCE CRITERIA

Elements describe the essential outcomes.

Performance criteria describe the performance needed to demonstrate achievement of the element.

1. Plan to implement wireless network security

1.1 Research and evaluate organisational and regulatory security policies that have been used to benchmark acceptable network security standards

1.2 Assess customer requirements and needs against regulatory security compliance and work health and safety (WHS) considerations

1.3 Produce a plan with security solution documentation for future growth and security needs

2. Design, implement and test guest access services

2.1 Analyse and select the appropriate architecture for guest access services

2.2 Produce a map and set up guest access accounts

2.3 Configure WLAN controller authorisation

2.4 Configure the anchor and internal controllers

2.5 Troubleshoot guest access issues

3. Design, implement and test the security of wireless client devices

3.1 Design and configure authentication of clients and management frame protection on clients and controllers

3.2 Configure access control servers for integration with wireless network

3.3 Configure client- and server-side digital certificate services

3.4 Troubleshoot secure wireless connectivity services

4. Design, implement and test the integration of wireless network with organisational network admission control systems

4.1 Analyse network admission control architectures to assess the feasibility of network integration

4.2 Analyse the high-level authentication process flow to ensure compatible integration

4.3 Configure and test the wireless controller for admission control

4.4 Troubleshoot integration issues of network with access control

5. Evaluate and plan secure wireless connectivity services

5.1 Configure the intrusion detection system (IDS) to monitor the network activities for malicious activities or policy violations

5.2 Analyse the report produced by the IDS to review threat-mitigation strategies

5.3 Update security solution plan to mitigate wireless vulnerabilities to ensure network integrity

6. Manage the requirements to integrate the WLAN with advanced security platforms

6.1 Evaluate end-to-end security solutions and assess how they integrate with the planned wireless solutions

6.2 Analyse the firewall configuration requirements of WLANs to ensure compliance with organisational policies

6.3 Configure and test the WLAN controllers for wired and wireless intrusion prevention and detection system (IPDS) security protection

Evidence of the ability to:

conduct research and produce a security solutions plan

evaluate, design and implement a wireless local area network (WLAN) site security plan

evaluate end-to-end security solutions and assess their integration with the planned wireless solutions

use network tools to test wireless controllers and intrusion prevention and detection system (IPDS) solutions.

Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.

To complete the unit requirements safely and effectively, the individual must:

explain configuration, verification and troubleshooting procedures to undertake:

router operation and routing

virtual local area network (VLAN) switching and inter-switching communications

outline iDevice Operating System (iOS) and internet protocol (IP) networking models

explain intrusion prevention system (IPS) and intrusion detection system (IDS) security protection

outline threat mitigation strategies

summarise the following aspects of wireless, including:

current regulations, standards and certifications

deployment schemes

network security technology

network topologies, architectures and elements

networking protocols

summarise WLAN with reference to:

advanced security platforms

devices, their specification and use

radio frequency characteristics and their measuring techniques.


Submission Requirements

List each assessment task's title, type (eg project, observation/demonstration, essay, assignment, checklist) and due date here

Assessment task 1: [title]      Due date:

(add new lines for each of the assessment tasks)


Assessment Tasks

Copy and paste from the following data to produce each assessment task. Write these in plain English and spell out how, when and where the task is to be carried out, under what conditions, and what resources are needed. Include guidelines about how well the candidate has to perform a task for it to be judged satisfactory.

ELEMENT

PERFORMANCE CRITERIA

Elements describe the essential outcomes.

Performance criteria describe the performance needed to demonstrate achievement of the element.

1. Plan to implement wireless network security

1.1 Research and evaluate organisational and regulatory security policies that have been used to benchmark acceptable network security standards

1.2 Assess customer requirements and needs against regulatory security compliance and work health and safety (WHS) considerations

1.3 Produce a plan with security solution documentation for future growth and security needs

2. Design, implement and test guest access services

2.1 Analyse and select the appropriate architecture for guest access services

2.2 Produce a map and set up guest access accounts

2.3 Configure WLAN controller authorisation

2.4 Configure the anchor and internal controllers

2.5 Troubleshoot guest access issues

3. Design, implement and test the security of wireless client devices

3.1 Design and configure authentication of clients and management frame protection on clients and controllers

3.2 Configure access control servers for integration with wireless network

3.3 Configure client- and server-side digital certificate services

3.4 Troubleshoot secure wireless connectivity services

4. Design, implement and test the integration of wireless network with organisational network admission control systems

4.1 Analyse network admission control architectures to assess the feasibility of network integration

4.2 Analyse the high-level authentication process flow to ensure compatible integration

4.3 Configure and test the wireless controller for admission control

4.4 Troubleshoot integration issues of network with access control

5. Evaluate and plan secure wireless connectivity services

5.1 Configure the intrusion detection system (IDS) to monitor the network activities for malicious activities or policy violations

5.2 Analyse the report produced by the IDS to review threat-mitigation strategies

5.3 Update security solution plan to mitigate wireless vulnerabilities to ensure network integrity

6. Manage the requirements to integrate the WLAN with advanced security platforms

6.1 Evaluate end-to-end security solutions and assess how they integrate with the planned wireless solutions

6.2 Analyse the firewall configuration requirements of WLANs to ensure compliance with organisational policies

6.3 Configure and test the WLAN controllers for wired and wireless intrusion prevention and detection system (IPDS) security protection

Copy and paste from the following performance criteria to create an observation checklist for each task. When you have finished writing your assessment tool every one of these must have been addressed, preferably several times in a variety of contexts. To ensure this occurs download the assessment matrix for the unit; enter each assessment task as a column header and place check marks against each performance criteria that task addresses.

Observation Checklist

Tasks to be observed according to workplace/college/TAFE policy and procedures, relevant legislation and Codes of Practice Yes No Comments/feedback
Research and evaluate organisational and regulatory security policies that have been used to benchmark acceptable network security standards 
Assess customer requirements and needs against regulatory security compliance and work health and safety (WHS) considerations 
Produce a plan with security solution documentation for future growth and security needs 
Analyse and select the appropriate architecture for guest access services 
Produce a map and set up guest access accounts 
Configure WLAN controller authorisation 
Configure the anchor and internal controllers 
Troubleshoot guest access issues 
Design and configure authentication of clients and management frame protection on clients and controllers 
Configure access control servers for integration with wireless network 
Configure client- and server-side digital certificate services 
Troubleshoot secure wireless connectivity services 
Analyse network admission control architectures to assess the feasibility of network integration 
Analyse the high-level authentication process flow to ensure compatible integration 
Configure and test the wireless controller for admission control 
Troubleshoot integration issues of network with access control 
Configure the intrusion detection system (IDS) to monitor the network activities for malicious activities or policy violations 
Analyse the report produced by the IDS to review threat-mitigation strategies 
Update security solution plan to mitigate wireless vulnerabilities to ensure network integrity 
Evaluate end-to-end security solutions and assess how they integrate with the planned wireless solutions 
Analyse the firewall configuration requirements of WLANs to ensure compliance with organisational policies 
Configure and test the WLAN controllers for wired and wireless intrusion prevention and detection system (IPDS) security protection 

Forms

Assessment Cover Sheet

ICTNWK607 - Design and implement wireless network security
Assessment task 1: [title]

Student name:

Student ID:

I declare that the assessment tasks submitted for this unit are my own work.

Student signature:

Result: Competent Not yet competent

Feedback to student

 

 

 

 

 

 

 

 

Assessor name:

Signature:

Date:


Assessment Record Sheet

ICTNWK607 - Design and implement wireless network security

Student name:

Student ID:

Assessment task 1: [title] Result: Competent Not yet competent

(add lines for each task)

Feedback to student:

 

 

 

 

 

 

 

 

Overall assessment result: Competent Not yet competent

Assessor name:

Signature:

Date:

Student signature:

Date: