Assessor Resource

ICTCYS401
Design and implement network security infrastructure for an organisation

Assessment tool

Version 1.0
Issue Date: May 2024


This unit describes the skills and knowledge required to set up network security infrastructure scalable to a medium to large organisation.

It applies to individuals who work as networking engineers and cloud engineers and specialise in cyber security in an Information and Communications Technology (ICT) and digital team environment.

No licensing, legislative or certification requirements apply to this unit at the time of publication.

You may want to include more information here about the target group and the purpose of the assessments (eg formative, summative, recognition)


Evidence Required

List the assessment methods to be used and the context and resources required for assessment. Copy and paste the relevant sections from the evidence guide below and then re-write these in plain English.

The candidate must demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including evidence of the ability to:

design and implement a network security infrastructure according to organisational requirements.

In the course of the above, the candidate must:

identify at least three security risks and at least three threats impacting business

identify and evaluate the advantages and disadvantages of at least two industry standard network security providers suitable to infrastructure being designed and implemented.

The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including knowledge of:

network infrastructure features, including:

connectivity

routing and switching capabilities

network security

access control

organisational business processes and applicable organisational, infrastructure, network and security requirements in each area

organisational procedures applicable to designing and implementing network security infrastructure, including:

documenting established requirements, risks and work performed

establishing requirements and features of network security infrastructure

establishing maintenance and alert processes

conducting routine reviews of network security infrastructure

testing methods and procedures

security risks, and tolerance of risk in an organisation

industry standard network security providers

industry standards and regulations applicable to implementing network security infrastructure in an organisation.

Skills in this unit must be demonstrated in a workplace or simulated environment where the conditions are typical of those in a working environment in this industry.

This includes access to:

required hardware, software and its components

organisational procedures and policies applicable to network security infrastructure

required network security providers and solutions

site server

application and user security technologies.

Assessors of this unit must satisfy the requirements for assessors in applicable vocational education and training legislation, frameworks and/or standards.

Submission Requirements

List each assessment task's title, type (eg project, observation/demonstration, essay, assingnment, checklist) and due date here

Assessment task 1: [title]      Due date:

(add new lines for each of the assessment tasks)

Assessment Tasks

Copy and paste from the following data to produce each assessment task. Write these in plain English and spell out how, when and where the task is to be carried out, under what conditions, and what resources are needed. Include guidelines about how well the candidate has to perform a task for it to be judged satisfactory.

The candidate must demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including evidence of the ability to:

design and implement a network security infrastructure according to organisational requirements.

In the course of the above, the candidate must:

identify at least three security risks and at least three threats impacting business

identify and evaluate the advantages and disadvantages of at least two industry standard network security providers suitable to infrastructure being designed and implemented.

The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including knowledge of:

network infrastructure features, including:

connectivity

routing and switching capabilities

network security

access control

organisational business processes and applicable organisational, infrastructure, network and security requirements in each area

organisational procedures applicable to designing and implementing network security infrastructure, including:

documenting established requirements, risks and work performed

establishing requirements and features of network security infrastructure

establishing maintenance and alert processes

conducting routine reviews of network security infrastructure

testing methods and procedures

security risks, and tolerance of risk in an organisation

industry standard network security providers

industry standards and regulations applicable to implementing network security infrastructure in an organisation.

Skills in this unit must be demonstrated in a workplace or simulated environment where the conditions are typical of those in a working environment in this industry.

This includes access to:

required hardware, software and its components

organisational procedures and policies applicable to network security infrastructure

required network security providers and solutions

site server

application and user security technologies.

Assessors of this unit must satisfy the requirements for assessors in applicable vocational education and training legislation, frameworks and/or standards.
Copy and paste from the following performance criteria to create an observation checklist for each task. When you have finished writing your assessment tool every one of these must have been addressed, preferably several times in a variety of contexts. To ensure this occurs download the assessment matrix for the unit; enter each assessment task as a column header and place check marks against each performance criteria that task addresses.

Observation Checklist

Tasks to be observed according to workplace/college/TAFE policy and procedures, relevant legislation and Codes of Practice Yes No Comments/feedback
Obtain work details and scope from required personnel and arrange for site access in compliance with required security arrangements, legislation, codes, regulations and standards 
Establish security threats impacting organisation with required personnel and assess its likelihood 
Confirm and document established requirements and risks according to organisational procedures 
Establish requirements and features of network security infrastructure 
Identify and evaluate a range of industry standard network security providers 
Discuss and confirm selected network security provider with required personnel according to infrastructure requirements 
Establish and create secure network boundaries 
Implement server, application and user security technologies according to network security requirements 
Confirm required levels of user access throughout organisation 
Establish maintenance and alert processes for risk and security threats according to organisational procedures 
Test deployment of network security infrastructure and its components according to organisational testing procedures 
Gather and review test results and logs and adjust accordingly 
Confirm completion of requirements with required personnel 
Document work performed and results according to organisational procedures 
Conduct routine reviews of network security infrastructure according to organisational procedures 

Forms

Assessment Cover Sheet

ICTCYS401 - Design and implement network security infrastructure for an organisation
Assessment task 1: [title]

Student name:

Student ID:

I declare that the assessment tasks submitted for this unit are my own work.

Student signature:

Result: Competent Not yet competent

Feedback to student

 

 

 

 

 

 

 

 

Assessor name:

Signature:

Date:

Assessment Record Sheet

ICTCYS401 - Design and implement network security infrastructure for an organisation

Student name:

Student ID:

Assessment task 1: [title] Result: Competent Not yet competent

(add lines for each task)

Feedback to student:

 

 

 

 

 

 

 

 

Overall assessment result: Competent Not yet competent

Assessor name:

Signature:

Date:

Student signature:

Date: