Unit of competency
Modification History
Release |
Comments |
Release 1 |
This version first released with ICT Information and Communications Technology Training Package Version 6.0. |
Application
This unit describes the skills and knowledge required to conduct a risk assessment and analysis in a business environment. The risk assessment requires the identity and alignment of an organisation’s operating environment to their required risk register and the realignment of their operations.
It applies to those who work in risk functions of an organisation, including ICT risk managers, cyber security engineers, network engineers, DevOps engineers and cyber security solutions architects, and are responsible for designing security solutions.
No licensing, legislative or certification requirements apply to this unit at the time of publication.
Unit Sector
Cyber security
Elements and Performance Criteria
ELEMENT |
PERFORMANCE CRITERIA |
Elements describe the essential outcomes. |
Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Prepare to perform risk assessment |
1.1 Analyse organisations risk culture and document findings according to organisational requirements 1.2 Research and document legislative and organisational cyber security risk requirements 1.3 Obtain and analyse organisation’s risk register and determine its currency against organisational legislative requirements 1.4 Develop and document risk assessment plan according to organisational requirements 1.5 Communicate risk assessment plan with required personnel and seek and respond to feedback |
2. Perform risk assessment |
2.1 Initiate risk assessment according to plan 2.2 Document process and outcomes of risk assessment according to organisational policies and procedures |
3. Finalise risk assessment |
3.1 Analyse and document findings against risk register and determine operations outside of organisation’s risk appetite 3.2 Develop and document operational measures to align operations against risk register requirements 3.3 Communicate risk assessment findings to required personnel and highlight areas of non-compliance and solutions 3.4 Lodge documentation according to organisational requirements |
Foundation Skills
This section describes those language, literacy, numeracy and employment skills that are essential to performance but not explicit in the performance criteria.
S KILL |
D ESCRIPTION |
Reading |
|
Writing |
|
Planning and organising |
|
Problem solving |
|
Unit Mapping Information
No equivalent unit. New unit.
Links
Companion Volume Implementation Guide is found on VETNet - https://vetnet.gov.au/Pages/TrainingDocs.aspx?q=a53af4e4-b400-484e-b778-71c9e9d6aff2