Modification History
Release |
TP Version |
Comments |
3 |
PSP12V1 |
Unit descriptor edited. |
2 |
PSP04V4.2. |
Layout adjusted. No changes to content. |
1 |
PSP04V4.1 |
Primary release. |
Unit Descriptor
This unit covers the requirements to respond to security incidents, that may be intentional or unintentional, and that relate to people, information, property or reputation. It includes assessing and advising on security incidents and planning an incident response.
In practice, responding to security incidents may overlap with other generalist or specialist public sector work activities such as acting ethically, complying with legislation, working effectively, organising information.
No licensing, legislative, regulatory or certification requirements apply to this unit at the time of endorsement.
Application of the Unit
Not applicable.
Licensing/Regulatory Information
Not applicable.
Pre-Requisites
Not applicable.
Employability Skills Information
This unit contains employability skills.
Elements and Performance Criteria Pre-Content
Elements are the essential outcomes of the unit of competency. |
Together, performance criteria specify the requirements for competent performance. Text in bold italics is explained in the Range Statement following. |
Elements and Performance Criteria
ELEMENT |
PERFORMANCE CRITERIA |
1 . Assess and advise on security incidents |
1.1 Security incidents are identified in accordance with legislation, government security policy and guidelines. 1.2 Response is provided in accordance with organisational policy and procedures, incident management plan and reflects seriousness of the incident. 1.3 Preliminary assessment is conducted that considers the nature of the breach, level of risk and likely consequences. 1.4 Initial advice regarding the incident is given to relevant personnel in a timely fashion. 1.5 Complete and accurate records relating to the incident are maintained, based on information collected in a timely fashion. |
2 . Plan incident response |
2.1 Evidence is identified and collected in accordance with legislation, organisational policy and procedures. 2.2 Evidence is assessed to determine risk factors. 2.3 Action is recommended which is appropriate to the level of seriousness of the incident. 2.4 Any changes required in security policy as a result of the incident are identified and documented. 2.5 Appropriate agencies are advised of the incident in accordance with legislation, government security policy and procedures. 2.6 A final report is prepared that incorporates background to the incident, action taken, interview statements, outcomes, summary of findings and recommended action. |
Required Skills and Knowledge
This section describes the essential skills and knowledge and their level, required for this unit. |
Skill requirements Look for evidence that confirms skills in:
|
Knowledge requirements Look for evidence that confirms knowledge and understanding of:
|
Evidence Guide
The Evidence Guide specifies the evidence required to demonstrate achievement in the unit of competency as a whole. It must be read in conjunction with the Unit descriptor, Performance Criteria, the Range Statement and the Assessment Guidelines for the Public Sector Training Package. |
|
Units to be assessed together |
|
Overview of evidence requirements |
In addition to integrated demonstration of the elements and their related performance criteria, look for evidence that confirms:
|
Resources required to carry out assessment |
These resources include:
|
Where and how to assess evidence |
Valid assessment of this unit requires:
Assessment methods should reflect workplace demands, such as literacy, and the needs of particular groups, such as:
Assessment methods suitable for valid and reliable assessment of this competency may include, but are not limited to, a combination of 2 or more of:
|
For consistency of assessment |
Evidence must be gathered over time in a range of contexts to ensure the person can achieve the unit outcome and apply the competency in different situations or environments |
Range Statement
The Range Statement provides information about the context in which the unit of competency is carried out. The variables cater for differences between States and Territories and the Commonwealth, and between organisations and workplaces. They allow for different work requirements, work practices and knowledge. The Range Statement also provides a focus for assessment. It relates to the unit as a whole. Text in bold italics in the Performance Criteria is explained here. |
|
Security incidents may be: |
|
Incidents may relate to: |
|
Preliminary assessment may include: |
|
Relevant personnel may include: |
|
Records may include: |
|
Unit Sector(s)
Not applicable.
Competency field
Government Security Management.