NTISthis.com

Evidence Guide: BSBXCS402 - Promote workplace cyber security awareness and best practices

Student: __________________________________________________

Signature: _________________________________________________

Tips for gathering evidence to demonstrate your skills

The important thing to remember when gathering evidence is that the more evidence the better - that is, the more evidence you gather to demonstrate your skills, the more confident an assessor can be that you have learned the skills not just at one point in time, but are continuing to apply and develop those skills (as opposed to just learning for the test!). Furthermore, one piece of evidence that you collect will not usualy demonstrate all the required criteria for a unit of competency, whereas multiple overlapping pieces of evidence will usually do the trick!

From the Wiki University

 

BSBXCS402 - Promote workplace cyber security awareness and best practices

What evidence can you provide to prove your understanding of each of the following citeria?

Develop cyber security awareness in work area

  1. Establish current level of awareness in work area relating to cyber security
  2. Create and maintain cyber security awareness program that reflects organisation-wide best practice
  3. Contribute to developing cyber security policies and procedures, and communicate to required personnel
Establish current level of awareness in work area relating to cyber security

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Create and maintain cyber security awareness program that reflects organisation-wide best practice

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Contribute to developing cyber security policies and procedures, and communicate to required personnel

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Support effective cyber security practices in work area

  1. Review cyber security practices according to organisational policies and procedures
  2. Arrange training and information updates as required, and maintain related records
  3. Present insights from review and training to required personnel, and potential related impacts on workplace
Review cyber security practices according to organisational policies and procedures

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Arrange training and information updates as required, and maintain related records

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Present insights from review and training to required personnel, and potential related impacts on workplace

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Review cyber security awareness in work area

  1. Review latest cyber security threats and trends impacting organisations
  2. Document outcomes of review and suggested improvements for consideration by required personnel
  3. Communicate review outcomes and cyber security improvement requirements according to organisational policies and procedures
Review latest cyber security threats and trends impacting organisations

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Document outcomes of review and suggested improvements for consideration by required personnel

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Communicate review outcomes and cyber security improvement requirements according to organisational policies and procedures

Completed
Date:

Teacher:		 Evidence:

 

 

 

 

 

 

 

Assessed

Teacher: ___________________________________ Date: _________

Signature: ________________________________________________

Comments:

 

 

 

 

 

 

 

 

Instructions to Assessors

Required Skills and Knowledge

The candidate must demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including evidence of the ability to:

develop one set of policies and procedures for a work area that promote cyber security awareness and practices

arrange training or updates to be provided to colleagues that support practice or awareness in relation to two different cyber security matters.

The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit, including knowledge of:

legislative requirements relating to cyber security context of performance evidence, including:

data protection

implications of Notifiable Data Breach legislation on an organisation and other associated Australian privacy laws

established international legislation

organisational policies and procedures relating to:

securely storing, sharing and managing information

encryption, and protocols for its uses

data classification and management

media/document labelling

data governance

acceptable use

bring your own device

Australian government sources of information on current threats

risks associated with workplace cyber security

strategies and techniques for promoting workplace cyber security

techniques for:

implementing and promoting workplace cyber security awareness

facilitating training that promotes cyber security awareness, including the use of simulated activities.