Implement security risk treatments

Formats and tools

Unit Description
Reconstruct the unit from the xml and display it as an HTML page.
Assessment Tool
an assessor resource that builds a framework for writing an assessment tool
Assessment Template
generate a spreadsheet for marking this unit in a classroom environment. Put student names in the top row and check them off as they demonstrate competenece for each of the unit's elements and performance criteria.
Assessment Matrix
a slightly different format than the assessment template. A spreadsheet with unit names, elements and performance criteria in separate columns. Put assessment names in column headings to track which performance criteria each one covers. Good for ensuring that you've covered every one of the performance criteria with your assessment instrument (all assessement tools together).
Wiki Markup
mark up the unit in a wiki markup codes, ready to copy and paste into a wiki page. The output will work in most wikis but is designed to work particularly well as a Wikiversity learning project.
Evidence Guide
create an evidence guide for workplace assessment and RPL applicants
Competency Mapping Template
Unit of Competency Mapping – Information for Teachers/Assessors – Information for Learners. A template for developing assessments for a unit, which will help you to create valid, fair and reliable assessments for the unit, ready to give to trainers and students
Observation Checklist
create an observation checklist for workplace assessment and RPL applicants. This is similar to the evidence guide above, but a little shorter and friendlier on your printer. You will also need to create a seperate Assessor Marking Guide for guidelines on gathering evidence and a list of key points for each activity observed using the unit's range statement, required skills and evidence required (see the unit's html page for details)

Self Assessment Survey
A form for students to assess thier current skill levels against each of the unit's performance criteria. Cut and paste into a web document or print and distribute in hard copy.
Moodle Outcomes
Create a csv file of the unit's performance criteria to import into a moodle course as outcomes, ready to associate with each of your assignments. Here's a quick 'how to' for importing these into moodle 2.x
Registered Training Organisations
Trying to find someone to train or assess you? This link lists all the RTOs that are currently registered to deliver PSPSEC402A, 'Implement security risk treatments'.
Google Links
links to google searches, with filtering in place to maximise the usefulness of the returned results
Books
Reference books for 'Implement security risk treatments' on fishpond.com.au. This online store has a huge range of books, pretty reasonable prices, free delivery in Australia *and* they give a small commission to ntisthis.com for every purchase, so go nuts :)


Elements and Performance Criteria

ELEMENT

PERFORMANCE CRITERIA

1. Confirm risk decisions

1.1 Management decisions determining acceptable and unacceptable risks are confirmed in accordance with organisational policy and procedures.

1.2 Low-level risks that the organisation decides to accept are noted and monitored to detect changed circumstances .

1.3 Unacceptable high-level risks are referred for the development of formal management plans.

1.4 Major or significant risks identified as unacceptable are noted for treatment.

2. Identify risk treatments

2.1 Treatments are determined that are consistent with organisational policies, procedures and guidelines and the organisation's security plan.

2.2 Treatments are determined that are cost-effective and match the level and type of risk and the importance of the function or resource.

2.3 Treatments are selected to reduce the likelihood of occurrence or the consequences of the risk, or both.

2.4 Continuity plans are included in treatments, where appropriate, in accordance with the security plan.

2.5 Treatments are documented and submitted for approval in accordance with organisational policy and procedures.

3. Implement countermeasures

3.1 A treatment plan is developed and implemented in accordance with organisational policy and procedures.

3.2 Implementation of countermeasures is undertaken in accordance with the implementation strategy detailed in the security plan.

3.3 Countermeasures are implemented in accordance with timeframe and budgetary requirements.

3.4 Countermeasures are implemented in accordance with legal requirements, government and organisational policy.

4. Monitor and review security risk management process

4.1 Strategies to monitor risk environment are implemented.

4.2 Monitoring is conducted on a regular basis in accordance with organisational policy and procedures.

4.3 Risk treatments are evaluated against the objectives of the security plan to ensure these remain effective and/or necessary.

4.4 Feedback is obtained from stakeholders on the adequacy and need for current security measures affecting their work/area.

4.5 Recommendations for re-examination of security risk or improved risk treatments are conveyed to the appropriate personnel in accordance with organisational policy and procedures.


Qualifications and Skillsets

PSPSEC402A appears in the following qualifications:

  • PUA42109 - Certificate IV in Public Safety (Intelligence Operations)
  • PSP41704 - Certificate IV in Government (Personnel Security)
  • PSP41604 - Certificate IV in Government (Security)
  • PSP41712 - Certificate IV in Government (Personnel Security)
  • DEF42112 - Certificate IV in Intelligence Operations
  • PSP41612 - Certificate IV in Government (Security)