Modification History
Release |
TP Version |
Comments |
3 |
PSP12V1 |
Unit descriptor edited. |
2 |
PSP04V4.2. |
Layout adjusted. No changes to content. |
1 |
PSP04V4.1 |
Primary release. |
Unit Descriptor
This unit covers implementation and monitoring of security risk management plans. It includes implementing a security plan, monitoring the risk environment and evaluating the security plan.
In practice, implementation and monitoring of security risk management plans may overlap with other generalist or specialist public sector work activities such as acting ethically, promoting compliance with legislation, developing client services, undertaking research and analysis.
No licensing, legislative, regulatory or certification requirements apply to this unit at the time of endorsement.
Application of the Unit
Not applicable.
Licensing/Regulatory Information
Not applicable.
Pre-Requisites
Not applicable.
Employability Skills Information
This unit contains employability skills.
Elements and Performance Criteria Pre-Content
Elements are the essential outcomes of the unit of competency. |
Together, performance criteria specify the requirements for competent performance. Text in bold italics is explained in the Range Statement following. |
Elements and Performance Criteria
ELEMENT |
PERFORMANCE CRITERIA |
1 . Implement security plan |
1.1 Security risks are treated/countermeasures are implemented in accordance with the security plan. 1.2 Security plan is implemented to meet timeframe and budgetary requirements. 1.3 Countermeasures are implemented in compliance with legal requirements , government and organisational policy . 1.4 Residual risks are documented and monitored. |
2 . Monitor the risk environment |
2.1 Strategies to monitor the risk environment are determined and documented. 2.2 Security risks, and the type/s and source/s of threats are monitored to detect changing circumstances that may alter risk management priorities. 2.3 Monitoring is conducted on a regular basis in accordance with organisational policy and procedures. 2.4 Changes to the organisation are monitored to identify circumstances where re-examination of the security environment becomes necessary. 2.5 Results of monitoring are documented and acted on. |
3 . Evaluate security plan |
3.1 Risk treatments are monitored to gauge whether they are being implemented properly and fully. 3.2 Treatments are evaluated against the objectives of the security plan to ensure they remain effective and/or necessary. 3.3 Feedback is obtained from stakeholders on the adequacy and need for current security measures affecting their work area. 3.4 Weaknesses in the security plan are identified and addressed in accordance with organisational policy and procedures. 3.5 Security plan is reviewed on an on-going basis, as a result of incidents, breaches, and changes in circumstances. 3.6 Security plan is updated in accordance with organisational policies, procedures and guidelines to reflect current circumstances. |
Required Skills and Knowledge
This section describes the essential skills and knowledge and their level, required for this unit. |
Skill requirements Look for evidence that confirms skills in:
|
Knowledge requirements Look for evidence that confirms knowledge and understanding of:
|
Evidence Guide
The Evidence Guide specifies the evidence required to demonstrate achievement in the unit of competency as a whole. It must be read in conjunction with the Unit descriptor, Performance Criteria, the Range Statement and the Assessment Guidelines for the Public Sector Training Package. |
|
Units to be assessed together |
|
Overview of evidence requirements |
In addition to integrated demonstration of the elements and their related performance criteria, look for evidence that confirms:
|
Resources required to carry out assessment |
These resources include:
|
Where and how to assess evidence |
Valid assessment of this unit requires:
Assessment methods should reflect workplace demands, such as literacy, and the needs of particular groups, such as:
Assessment methods suitable for valid and reliable assessment of this competency may include, but are not limited to, a combination of 2 or more of:
|
For consistency of assessment |
Evidence must be gathered over time in a range of contexts to ensure the person can achieve the unit outcome and/or apply the competency in different situations or environments |
Range Statement
The Range Statement provides information about the context in which the unit of competency is carried out. The variables cater for differences between States and Territories and the Commonwealth, and between organisations and workplaces. They allow for different work requirements, work practices and knowledge. The Range Statement also provides a focus for assessment. It relates to the unit as a whole. Text in bold italics in the Performance Criteria is explained here. |
|
Security risks may include: |
|
Countermeasures may include: |
|
Legal requirements, government and organisational policy may include: |
|
Residual risks are: |
|
Strategies may include: |
|
Type of risk may include: |
|
Sources of threats may include: |
|
Monitoring may include: |
|
Risk treatments may include: |
|
Stakeholders may include: |
|
Unit Sector(s)
Not applicable.
Competency field
Government Security Management.