Unit of competency
Modification History
Release |
Comments |
Release 1 |
This version first released with ICT Information and Communications Technology Training Package Version 1.0. |
Application
This unit describes the skills and knowledge required to implement and manage security on an operational system.
It applies to individuals working in middle management in technical advice, guidance and leadership roles such as security managers and security analysts responsible for implementing and managing the organisations security management system.
No licensing, legislative or certification requirements apply to this unit at the time of publication.
Unit Sector
Networking
Elements and Performance Criteria
ELEMENT |
PERFORMANCE CRITERIA |
Elements describe the essential outcomes. |
Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Analyse threats to system |
1.1 Evaluate the organisation’s system and verify that it meets enterprise guidelines and policies 1.2 Conduct risk analysis on system and document outcomes 1.3 Evaluate threats to the system and document findings 1.4 Compile and document human interactions with system |
2. Determine risk category |
2.1 Conduct a risk assessment on the system and categorise risks 2.2 Conduct a risk assessment on human operations and interactions with the system and categorise risks 2.3 Match risk plans to risk categories 2.4 Determine and plan resources by risk categories |
3. Identify appropriate controls |
3.1 Devise and put in place effective controls to manage risk 3.2 Design policies and procedures to cover user access of the system 3.3 Conduct training in the use of system-related policies and procedures 3.4 Monitor high-risk categories at specified periods 3.5 Categorise and record system breakdowns |
4. Include controls in the system |
4.1 Develop security plan and procedures to include in management system 4.2 Develop security recovery plan 4.3 Implement system controls to reduce risks in human interaction with the system |
5. Monitor system tools and procedures |
5.1 Review and monitor risks and controls, using a management review process 5.2 Review risk analysis process based on security benchmarks from vendors, security specialists and organisational reviews 5.3 Plan to re-evaluate system and identify new threats and risks |
Foundation Skills
This section describes language, literacy, numeracy and employment skills incorporated in the performance criteria that are required for competent performance.
Skill |
Performance Criteria |
Description |
Reading |
1.1, 5.1, 5.2 |
|
Writing |
1.2-1.4, 2.1, 2.2, 3.2, 3.5, 4.1, 4.2 |
|
Navigate the world of work |
1.1 |
|
Interact with others |
3.3 |
|
Get the work done |
1.1-1.3, 2.1-2.4, 3.1, 3.4, 4.3, 5.3 |
|
Unit Mapping Information
Code and title current version |
Code and title previous version |
Comments |
Equivalence status |
ICTNWK513 Manage system security |
ICANWK513A Manage system security |
Updated to meet Standards for Training Packages |
Equivalent unit |
Links
Companion Volume implementation guides are found in VETNet - https://vetnet.gov.au/Pages/TrainingDocs.aspx?q=a53af4e4-b400-484e-b778-71c9e9d6aff2