Assignment Task

Project

This assessment task requires you to demonstrate the skills and knowledge to lead the identification, management and implementation of specific industry technologies to meet identified industry standards.

You are required to complete the following assessment activities in this assessment task: 

1. Develop cyber security awareness in the work area by developing one set of policies and procedures for a work area that promote cyber security awareness and practices

2. Support effective cyber security practices in the work area by arranging training or updates to be provided to colleagues that support practice or awareness in relation to two different cyber security matters

3. Review cyber security awareness in the work area

Resources required to complete this assessment task: 

• Organisational representative - This role will be played by your trainer/assessor 
• A site where industry-specific technologies may be used - for this assessment task, we have selected your RTO/educational institute as the industry. 
• Industry-specific technologies currently used in industry - you must research and identify the technologies related to the education industry. 
  • A desktop computer to access information online 
  • Internet browser
  • USB or Wifi access for document sharing and internet connectivity 
  • Recording hardware/software for podcasting, e.g. microphone, headphone and speakers 
  • Online forums to share ideas and information 
  • MS Office 
  • Learning management system such as Moodle 
• Documents detailing workplace health and safety (WHS) standards, environmental guidelines and organisational requirements - as applicable on the educational and training institute
• Information and data sources relating to cyber security (Access using the industry-specific technologies)
• Industry standards and organisational procedures
  • Cyber security 
  • Protecting a business from the cyber threats

Activity 1: Develop cyber security awareness in work area by developing one set of policies and procedures for a work area that promote cyber security awareness and practices

In this assessment activity, you are required to develop cyber security awareness in the work area by developing one set of policies and procedures for a work area that promote cyber security awareness and practices.

To complete this assessment task, you must participate in a meeting to consult with stakeholders to understand the assessment requirements and collect all the necessary information to complete your assessment activities.

Meeting objectives:

• Understand the assessment task requirements
• Understand your role and responsibilities
• Understand the role and responsibilities of other team members
• Understand the organisational requirements and guidelines in which meeting should occur
• Understand the topics to be discussed
• Understand any other requirements and guidelines applicable to complete the assessment task
• The meeting should cover all aspects of performance criteria to complete the assessment task successfully

Before the meeting, you are required to prepare a meeting agenda using the template provided.

When conducting the meeting, you are required to:

• Greet the team members.
• Discuss the following:
  • Compliance of cybersecurity with the legislative requirements
  • Application of cybersecurity policy.
  • Assessment of the currency of cybersecurity policy
  • Assessment of the efficacy of cybersecurity policy
  • Suggested improvements
• Ensure the understanding of the team members.
• Gather feedback from the team members on the diversity policy
  • Use listening and questioning to elicit the views of others and to clarify or confirm understanding
• Discuss the roles and responsibilities of the team members.
• Discuss the implementation plan for the revised diversity policy. Discuss the following:
  • Key result area
  • Objectives
  • Actions/training needs
  • Responsibility
  • Timeframe
  • Success measures
• Gain approval for the implementation plan

The team member will:

• Clarify their doubts of the team members
• Provide feedback on the improvements required

After the meeting, you are then required to:

• Prepare the meeting minutes template.
• Prepare a revised cybersecurity policy using the template provided.
• Prepare an implementation plan using the template provided.

Questions

1. How you have established the current level of awareness in work area relating to cybersecurity?

2. How you have completed the policy and procedure to create and maintain cybersecurity awareness program that reflects organisation-wide best practice?

3. How you have contributed to developing cybersecurity policies and procedures, and communicated to required personnel?

Activity 2: Support effective cyber security practices in the work area by arranging training or updates to be provided to colleagues that support practice or awareness in relation to two different cyber security matters   

In this assessment activity, you are required to arrange training to be provided to colleagues to support practice and awareness in relation to cybersecurity matters. The training will be required for minutes and must include the following topics:

• The organisation
• Review cyber security practices according to organisational policies and procedures
• Arrange training and information updates as required, and maintain related records
• Cybersecurity training requirements and purpose
• Phishing attacks.
• Removable media.
• Passwords and Authentication.
• Physical security.
• Mobile Device Security.
• Working Remotely.
• Public Wi-Fi.
• Cloud Security
• Present insights from review and training to required personnel, and potential related impacts on the workplace

The training should occur in front of your trainer/assessor. The student must complete an MS PowerPoint presentation covering all the above-mentioned topics.