The important thing to remember when gathering evidence is that the more evidence the better - that is, the more evidence you gather to demonstrate your skills, the more confident an assessor can be that you have learned the skills not just at one point in time, but are continuing to apply and develop those skills (as opposed to just learning for the test!). Furthermore, one piece of evidence that you collect will not usualy demonstrate all the required criteria for a unit of competency, whereas multiple overlapping pieces of evidence will usually do the trick!
From the Wiki University
What evidence can you provide to prove your understanding of each of the following citeria?
Identify cyber security incidents
|
|
Identify and review legislative requirements and organisational procedures and policies applicable to cyber security incidents and incident response plans Completed |
Evidence:
|
Obtain and analyse system, network and application infrastructure and logs according to organisational security procedures Completed |
Evidence:
|
Analyse and test application and confirm assumptions of incidents according to organisational security procedures Completed |
Evidence:
|
Discuss differences between network and systems incidents with required personnel Completed |
Evidence:
|
Confirm cyber security incidents
|
|
Confirm whether incidents are network or systems related Completed |
Evidence:
|
Discuss and confirm incident with required personnel Completed |
Evidence:
|
Identify and discuss potential changes required to system, network and application Completed |
Evidence:
|
Report and document cyber security incidents
|
|
Report cyber security incident to required personnel, according to legislative requirements and organisational policies and procedures Completed |
Evidence:
|
Document exposed vulnerability and changes, solutions and actions discussed according to organisational policies and procedures Completed |
Evidence:
|