Modification History
Release |
TP Version |
Comments |
3 |
PSP12V1 |
Unit descriptor edited. |
2 |
PSP04V4.2. |
Layout adjusted. No changes to content. |
1 |
PSP04V4.1 |
Primary release. |
.
Unit Descriptor
This unit covers planning to treat security risks through the development of a security risk management plan. It includes identifying security countermeasures and developing a formal security plan.
In practice, development of a security risk management plan may overlap with other generalist or specialist public sector work activities such as acting ethically, promoting compliance with legislation, developing client services, undertaking research and analysis.
No licensing, legislative, regulatory or certification requirements apply to this unit at the time of endorsement.
Application of the Unit
Not applicable.
Licensing/Regulatory Information
Not applicable.
Pre-Requisites
Not applicable.
Employability Skills Information
This unit contains employability skills.
Elements and Performance Criteria Pre-Content
Elements are the essential outcomes of the unit of competency. |
Together, performance criteria specify the requirements for competent performance. Text in bold italics is explained in the Range Statement following. |
Elements and Performance Criteria
ELEMENT |
PERFORMANCE CRITERIA |
1. Identify countermeasures |
1.1 Documented risks/threats are reviewed and management decisions on acceptable and unacceptable risks are confirmed. 1.2 Treatment options/countermeasures are determined that are consistent with organisational policies, procedures and guidelines to reduce the likelihood of occurrence or the consequences of the risk, or both. 1.3 Treatments include continuity plans , where appropriate, in accordance with organisational policy and procedures. 1.4 Treatments match the level and type of risk and the importance of the function or resource. 1.5 A cost-benefit analysis is conducted to determine cost-effective countermeasures. 1.6 Stakeholders are consulted on the cost-benefit analysis, and countermeasures are determined and submitted for decision/prioritising in accordance with organisational policy and procedures. |
2. Develop security plan |
2.1 Security plan is prepared in accordance with organisational policy and procedures. 2.2 The plan contains explanatory information on the importance of security and the organisation's security objectives in achieving corporate and business objectives. 2.3 The plan summarises threat assessments undertaken, current exposure and current protective security arrangements. 2.4 The plan outlines security strategies for implementation of countermeasures, monitoring and evaluation. 2.5 The plan includes a timetable and security budget for implementation of countermeasures including how they will be implemented and by whom. 2.6 Security plan is submitted for approval and communicated to stakeholders in accordance with organisational policy and procedures. |
Required Skills and Knowledge
This section describes the essential skills and knowledge and their level, required for this unit. |
Skill requirements Look for evidence that confirms skills in:
|
Knowledge requirements Look for evidence that confirms knowledge and understanding of:
|
Evidence Guide
The Evidence Guide specifies the evidence required to demonstrate achievement in the unit of competency as a whole. It must be read in conjunction with the Unit descriptor, Performance Criteria, the Range Statement and the Assessment Guidelines for the Public Sector Training Package. |
|
Units to be assessed together |
|
Overview of evidence requirements |
In addition to integrated demonstration of the elements and their related performance criteria, look for evidence that confirms:
|
Resources required to carry out assessment |
These resources include:
|
Where and how to assess evidence |
Valid assessment of this unit requires:
Assessment methods should reflect workplace demands, such as literacy, and the needs of particular groups, such as:
Assessment methods suitable for valid and reliable assessment of this competency may include, but are not limited to, a combination of 2 or more of:
|
For consistency of assessment |
Evidence must be gathered over time in a range of contexts to ensure the person can achieve the unit outcome and apply the competency in different situations or environments |
Range Statement
The Range Statement provides information about the context in which the unit of competency is carried out. The variables cater for differences between States and Territories and the Commonwealth, and between organisations and workplaces. They allow for different work requirements, work practices and knowledge. The Range Statement also provides a focus for assessment. It relates to the unit as a whole. Text in bold italics in the Performance Criteria is explained here. |
|
Risks/threats may be: |
|
Risk review includes: |
|
Acceptable risks are: |
|
Unacceptable risks are: |
|
Treatment options may include: |
|
Countermeasures may include: |
|
Likelihood of risk may be determined through analysis of: |
|
Consequences may include: |
|
Continuity plans : |
|
Level of risk may be: |
|
Cost-benefit analysis may be against: |
|
Stakeholders may include: |
|
Threat assessment : |
|
Risk exposure is: |
|
Unit Sector(s)
Not applicable.
Competency field
Government Security Management.