Unit of competency

Modification History

Application

This unit specifies the skills and knowledge required to implement security risk management plans. It includes organising, costing and allocating resources, monitoring emerging security risks and changes in the operating environment against activities and targets in action plans, and reviewing treatment options to update security risk management plans. Risk management plans are implemented based on the principles of ISO 31000:2018 Risk management – Guidelines (ISO 31000).

This unit is suitable for those using a broad range of cognitive, technical and communication skills to select and apply methods and technologies to analyse information and provide solutions to sometimes complex problems.

Legislative, regulatory or certification requirements apply in some states and territories to the provision of advice on security solutions, strategies, protocols and procedures. For further information, check with the relevant regulatory authority.

Pre-requisite Unit

None.

Unit Sector

Security/Risk management

Elements and Performance Criteria

Foundation Skills

As well as the foundation skills explicit in the performance criteria of this unit, candidates require:

• oral communication skills to negotiate agreements
• writing skills to prepare succinct and logically structured security risk management documents and guidelines
• numeracy skills to apply statistical methods and present statistical data.

Unit Mapping Information

Supersedes and equivalent to CPPSEC5005A Implement security risk management plan.

Links

Companion volumes to this training package are available at the VETNet website - https://vetnet.gov.au/Pages/TrainingDocs.aspx?q=6f3f9672-30e8-4835-b348-205dfcf13d9b

Assessment requirements

Modification History

Performance Evidence

To demonstrate competency, a candidate must meet the performance criteria of this unit by implementing two different security risk management plans.

Knowledge Evidence

To be competent in this unit, a candidate must demonstrate knowledge of:

• legislative and regulatory requirements that apply when implementing security risk management plans:

• key requirements of legislation, regulations and codes of conduct for security risk management in the jurisdiction of operation
• legal rights and responsibilities of employers, supervisors and employees associated with work health and safety and duty of care
• licensing requirements in the security industry
• trespass and removal of persons
• use of force

• application of integrated security measures including physical security, manpower, security technologies and security of personnel and information
• distinction between information and intelligence and methods for validating information sources
• work scheduling methods
• activities and targets contained in risk management action plans
• methods for achieving efficiencies when allocating resources, equipment and materials to the implementation of security risk management plans
• implications for security risk management arising from:

• National Guidelines for the Protection of Places of Mass gathering from Terrorism
• Active Armed Offender Guidelines for Crowded Places
• Improvised Explosive Device Guidelines for Crowded Places
• Chemical Weapon Guidelines for Crowded Places
• Hostile Vehicle Guidelines for Crowded Places

• methods for determining the type, nature and causes of potential and actual security risks
• methods for distinguishing between acceptable and unacceptable security risks
• methods for prioritising security risks and treatment options based on degree of risk
• methods for testing treatment options in the field
• process and application of dynamic risk assessment and risk management methods
• purpose of Australia’sStrategy for Protecting Crowded Places from Terrorism and understanding of:

• definition of crowded places
• key security issues for crowded places
• objectives, characteristics and identification of active armed offenders
• definition of hostile vehicles and methods of attack
• signs of chemical weapons attack and recommend response
• general features of improvised explosive devices and recommended incident response

• recognised industry practice and application of ISO 31000:2018 Risk management – Guidelines (ISO 31000) when implementing and updating security risk management plans
• types of treatment options appropriate to the range of security risks and threats to various client operating environments:

• assets
• buildings
• crowded places
• mass gatherings.

Assessment Conditions

Assessors must meet the requirements for assessors contained in the Standards for Registered Training Organisations.

All individuals engaged by a licensed RTO for security licensing purposes must hold both a security trainers licence (where such a licence exists within the relevant jurisdiction) and the licence for performing the security activities for which the individual is providing training or assessment. Regulators may impose other assessor conditions to meet jurisdictional assessment requirements.

Assessment must be conducted in the workplace or in a simulated workplace environment. Candidates must have access to:

• legislation, regulations and codes of practice that apply when implementing security risk management plans in the jurisdiction of operation
• risk management plans including action plans, resources and information technologies required to achieve the performance evidence
• ISO 31000
• National Guidelines for the Protection of Places of Mass gathering from Terrorism
• Australia’s Strategy for Protecting Crowded Places from Terrorism
• National Guidelines for the Protection of Places of Mass gathering from Terrorism
• Active Armed Offender Guidelines for Crowded Places
• Improvised Explosive Device Guidelines for Crowded Places
• Chemical Weapon Guidelines for Crowded Places
• Hostile Vehicle Guidelines for Crowded Places.

Links

Companion volumes to this training package are available at the VETNet website - https://vetnet.gov.au/Pages/TrainingDocs.aspx?q=6f3f9672-30e8-4835-b348-205dfcf13d9b