The important thing to remember when gathering evidence is that the more evidence the better - that is, the more evidence you gather to demonstrate your skills, the more confident an assessor can be that you have learned the skills not just at one point in time, but are continuing to apply and develop those skills (as opposed to just learning for the test!). Furthermore, one piece of evidence that you collect will not usualy demonstrate all the required criteria for a unit of competency, whereas multiple overlapping pieces of evidence will usually do the trick!
From the Wiki University
What evidence can you provide to prove your understanding of each of the following citeria?
Contribute to recommending risk management strategies that mitigate cyber security risk
|
|
Consult with stakeholders to determine scope of risk management appropriate to organisation and industry Completed |
Evidence:
|
Review relevant critical cyber risk management strategies appropriate to level of risk Completed |
Evidence:
|
Assist in developing suitable cyber security response options according to organisational policies and procedures Completed |
Evidence:
|
Present options for risk management strategies for approval within scope of own role Completed |
Evidence:
|
Document approved risk management strategies Completed |
Evidence:
|
Support implementation of approved risk management strategies in response to risk
|
|
Support communication of approved risk management strategies to required personnel Completed |
Evidence:
|
Contribute to monitoring cyber security risk according to selected risk management strategies Completed |
Evidence:
|
Assist in determining compliance with implemented cyber risk mitigation strategies Completed |
Evidence:
|
Address non-compliance within scope of own role and escalate where required according to organisational policies and procedures Completed |
Evidence:
|
Assist in establishing feedback processes that provide warning of potential new risks according to organisational requirements Completed |
Evidence:
|
Review and revise implemented risk management strategies
|
|
Identify benchmarks to track effectiveness of risk management strategies Completed |
Evidence:
|
Support evaluation of effectiveness of implemented strategies Completed |
Evidence:
|
Update risk management strategies with new information as required Completed |
Evidence:
|