^

 
 

Unit of competency details

ICTNWK619 - Plan, configure and test advanced server-based security (Release 1)

Summary

Usage recommendation:
Current
Mapping:
MappingNotesDate
Supersedes and is equivalent to ICTNWK602 - Plan, configure and test advanced server-based security 20/Jul/2020

Release Status:
Current
Releases:
ReleaseRelease date
1 1 (this release) 21/Jul/2020


Classifications

SchemeCodeClassification value
ASCED Module/Unit of Competency Field of Education Identifier 031305 Computer Engineering  

Classification history

SchemeCodeClassification valueStart dateEnd date
ASCED Module/Unit of Competency Field of Education Identifier 031305 Computer Engineering  21/Jul/2020 
The content being displayed has been produced by a third party, while all attempts have been made to make this content as accessible as possible it cannot be guaranteed. If you are encountering issues following the content on this page please consider downloading the content in its original form

Unit Of competency

Modification History

Release 

Comments 

Release 1

This version first released with ICT Information and Communications Technology Training Package Version 6.0.

Application

This unit describes the skills and knowledge required to implement advanced server security using secure authentication and network services on a network server.

It applies to individuals working in network specialists roles, ICT network engineers, network security specialists, network security planners, network security designers.

No licensing, legislative or certification requirements apply to this unit at the time of publication.

Unit Sector

Networking

Elements and Performance Criteria

ELEMENT 

PERFORMANCE CRITERIA 

Elements describe the essential outcomes.

Performance criteria describe the performance needed to demonstrate achievement of the element.

1. Plan advanced network server security

1.1 Determine required advanced network server environment

1.2 Analyse and review existing security documentation and identify network service vulnerabilities

1.3 Research required network authentication and network service configuration options and implications

1.4 Determine and document server security design solution according to organisational requirements

2. Prepare for network server security implementation

2.1 Assess environment and determine risk and hazard potential

2.2 Determine existing organisational risk and hazard control measures

2.3 Update existing risk control measures plan and align to installation requirements

2.4 Submit plan to required personnel, seek and respond to plan feedback

2.5 Implement risk and control preparation components according to technical and organisational requirements

3. Configure advanced network server security according to design

3.1 Configure required network authentication, authorisation, accounting services and automatic updates

3.2 Configure service security and access control lists according to technical design specifications

3.3 Configure required encryption and advanced network service security options

3.4 Configure operating system and third-party firewall and filter traffic in line with security requirements

3.5 Implement backup and recovery methods and enable restoration capability in the event of a disaster

4. Monitor and test network server security

4.1 Test and monitor server, server logs, network traffic and assess effectiveness of network service security

4.2 Monitor required files, detect unauthorised modifications, open ports and detect possible intrusions

4.3 Investigate, verify and document alleged violations of server and data security and privacy breaches

4.4 Implement required risk control measures plan recovery strategies and document outcomes

4.5 Finalise reports and documentation and submit to required personnel

Foundation Skills

This section describes language, literacy, numeracy and employment skills incorporated in the performance criteria that are required for competent performance.

S KILL 

D ESCRIPTION 

Learning

  • Considers the strategic and operational potential of digital trends to achieve work goals, enhance work processes, create opportunities and enhance or reduce risks

Oral communication

  • Uses listening and questioning skills to confirm knowledge for requirements and when seeking and responding to feedback

Reading

  • Interprets technical enterprise security procedures, policies, specifications and vendor notifications to determine and confirm job requirements

Writing

  • Develops a broad range of material including security reports for a specific audience, using clear and detailed language to convey explicit information, requirements and recommendations

Teamwork

  • Actively identifies the requirements of important communication exchanges, selecting required channels, format, tone and content to suit purpose and audience

Planning and organising

  • Keeps up to date on changes to legislation or regulations required to own rights and responsibilities and considers implications of these when planning, negotiating and undertaking work

Problem solving

  • Uses a broad range of strategies to store, access and organise virtual information, recognising that design choices will influence what information is retrieved and how it may be interpreted and used
  • Operates from a broad conceptual plan, developing the operational detail in stages, regularly reviewing priorities and performance during implementation and identifying and addressing issues

Self-management

  • Uses nuanced knowledge of context to detect, investigate and recover from security breaches

Technology

  • Demonstrates an acute awareness of the importance of knowledge, monitoring and controlling access to digitally stored and transmitted information

Unit Mapping Information

Supersedes and is equivalent to ICTNWK602 Plan, configure and test advanced server-based security.

Links

Companion Volume Implementation Guide is found on VETNet - https://vetnet.gov.au/Pages/TrainingDocs.aspx?q=a53af4e4-b400-484e-b778-71c9e9d6aff2

 

Assessment requirements

Modification History

Release 

Comments 

Release 1

This version first released with ICT Information and Communications Technology Training Package Version 6.0.

Performance Evidence

The candidate must demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including evidence of the ability to:

  • install, configure and test network security on a medium sized network on at least one occasion.

In the course of the above, the candidate must:

  • monitor the server for security breaches
  • document requirements, processes and outcomes.

Knowledge Evidence

The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including knowledge of:

  • industry standard auditing and penetration testing techniques
  • best practice procedures for implementing backup and restore
  • industry standard cryptographic techniques
  • procedures for error and event logging and reporting
  • intrusion detection and recovery procedures
  • industry standard network service configuration, including:
  • DNS
  • dynamic host configuration protocol (DHCP)
  • web
  • mail
  • FTP
  • server messages block (SMB)
  • network time protocol (NTP)
  • proxy
  • network service security features, options, limitations and vulnerabilities
  • planning, configuration, monitoring and troubleshooting techniques
  • security protection mechanisms, security threats and risks
  • server firewall configuration, monitoring and troubleshooting tools and techniques, including network monitoring and diagnostic utilities
  • user authentication and directory services.

Assessment Conditions

Skills in this unit must be demonstrated in a workplace or simulated environment where the conditions are typical of those in a working environment in this industry.

This includes access to:

  • a site where server installation may be conducted
  • server specifications
  • cabling
  • networked (LAN) computers
  • server diagnostic software
  • switch
  • WAN service point of presence
  • regulatory documentation that impacts on installation activities.

Assessors of this unit must satisfy the requirements for assessors in applicable vocational education and training legislation, frameworks and/or standards.

Links

Companion Volume Implementation Guide is found on VETNet - https://vetnet.gov.au/Pages/TrainingDocs.aspx?q=a53af4e4-b400-484e-b778-71c9e9d6aff2