Formats and tools
- Unit Description
- Reconstruct the unit from the xml and display it as an HTML page.
- Assessment Tool
- an assessor resource that builds a framework for writing an assessment tool
- Assessment Template
- generate a spreadsheet for marking this unit in a classroom environment. Put student names in the top row and check them off as they demonstrate competenece for each of the unit's elements and performance criteria.
- Assessment Matrix
- a slightly different format than the assessment template. A spreadsheet with unit names, elements and performance criteria in separate columns. Put assessment names in column headings to track which performance criteria each one covers. Good for ensuring that you've covered every one of the performance criteria with your assessment instrument (all assessement tools together).
- Wiki Markup
- mark up the unit in a wiki markup codes, ready to copy and paste into a wiki page. The output will work in most wikis but is designed to work particularly well as a Wikiversity learning project.
- Evidence Guide
- create an evidence guide for workplace assessment and RPL applicants
- Competency Mapping Template
- Unit of Competency Mapping – Information for Teachers/Assessors – Information for Learners. A template for developing assessments for a unit, which will help you to create valid, fair and reliable assessments for the unit, ready to give to trainers and students
- Observation Checklist
- create an observation checklist for workplace assessment and RPL applicants. This is similar to the evidence guide above, but a little shorter and friendlier on your printer. You will also need to create a seperate Assessor Marking Guide for guidelines on gathering evidence and a list of key points for each activity observed using the unit's range statement, required skills and evidence required (see the unit's html page for details)
- Self Assessment Survey
- A form for students to assess thier current skill levels against each of the unit's performance criteria. Cut and paste into a web document or print and distribute in hard copy.
- Moodle Outcomes
- Create a csv file of the unit's performance criteria to import into a moodle course as outcomes, ready to associate with each of your assignments. Here's a quick 'how to' for importing these into moodle 2.x
- Registered Training Organisations
- Trying to find someone to train or assess you? This link lists all the RTOs that are currently registered to deliver PSPSEC401A, 'Undertake government security risk analysis'.
- Google Links
- links to google searches, with filtering in place to maximise the usefulness of the returned results
- Books
- Reference books for 'Undertake government security risk analysis' on fishpond.com.au. This online store has a huge range of books, pretty reasonable prices, free delivery in Australia *and* they give a small commission to ntisthis.com for every purchase, so go nuts :)
Elements and Performance Criteria
ELEMENT | PERFORMANCE CRITERIA |
1. Establish security risk context | 1.1 Strategic and organisational contexts are confirmed in accordance with the organisation's security plan. 1.2 Stakeholders are identified and their expectations and input are gathered in accordance with legislation, policy and procedures. 1.3 Security risk criteria are identified from the security plan and confirmed as current and relevant. 1.4 Information and resources are obtained to conduct the risk analysis in accordance with organisational policy and procedures. |
2. Identify security risk | 2.1 Sources of security risk are identified and recorded in accordance with organisational policy and procedures. 2.2 Risks are identified using a specified methodology or tools in accordance with the security plan. 2.3 Sources of risk are identified from the perspective of all stakeholders. 2.4 Stakeholders are consulted during the risk identification process to finalise a list of risks. |
3. Analyse security risk | 3.1 Threat assessments, current exposure and current security arrangements are identified in accordance with the security plan to estimate the likelihood of each risk event occurring. 3.2 Potential consequences of each risk are determined in accordance with the security plan, including critical lead time for recovery. 3.3 Risk ratings are determined, documented and communicated in accordance with the security plan and organisational standards. 3.4 A rationale for each risk rating is included in accordance with organisational requirements. |
4. Evaluate security risk | 4.1 Risks are assessed against the organisation's security risk criteria. 4.2 Risks are prioritised for treatment in accordance with the security plan. 4.3 Risks are monitored in accordance with the security plan until treatment measures have been implemented. |
5. Compile security risk register | 5.1 A security risk register is developed that records identified risks, their nature and source. 5.2 The consequences and likelihood of risks, and the adequacy of existing controls are identified in the register. 5.3 Risk ratings are recorded for identified risks in accordance with organisational procedures. 5.4 The security risk register is compiled to meet organisational standards for content, format and presentation and reflects changes in circumstances. 5.5 Risk register is referred to management for decision on which risks will be accepted and which will require treatment. |