ASSESSMENT RECORD / FEEDBACK SHEET

Course: ICT50220 Diploma of IT Networking

Name: Student ID:

Unit Code and Name: ICTNWK546 Manage network security

Assessment Task Number and Title: #2 Case Study & Presentation

Date Submitted: Trainer’s Name: Surendra Pathak

 All assessments must be in a neat and readable format.

 Students are required to retain a duplicate of any assignment submitted, both written &
disk copy.
 Please refer to the Student Handbook for the Assessment Policy.
 Plagiarism is an academic misconduct and is unacceptable to Pacific College of
Technology.
I certify that the work submitted is my own. I have acknowledged material taken from
websites, textbooks and articles.
To be completed by Trainer

Competent Not yet competent to be reassessed

FEEDBACK

Trainer: Date:

DK-SP-02/24 CS & Presentation-ICTNWK546 V3.1

RTO Provider Code: 91151
CRICOS Provider Code: 02668F
Course : ICT50220 Diploma of IT Networking
Unit Code and Name : ICTNWK546 Manage network security
Trainer/Assessor :
Assessment item : #2- Case Study & Presentation
Due date : Week 4 (Extension upon trainer’s approval only)

Context and Purpose of the assessment:

This assessment will assess your skills and knowledge in the area of ‘ICTNWK546 Manage
network security’ unit. This assessment activity deals with the following elements of
performance and critical aspects of evidence:

Activity Element Performance Criteria

1 1- 5 1.1, 1.2, 1.3, 2.5, 3.1, 3.2, 3.3, 4.2, 5.3, 5.4
2 3-5 2.1, 2.2, 2.3, 2.4, 3.4, 4.1, 4.3, 4.4, 5.1, 5.2
3 1,2,4 1.1,2.3,2.5,4.1

o The assessment tasks for the unit assume that you will work in the Information
Technology industry. Case studies/ exercises used in this assessment reflect a workplace
scenario.

o If you are not sure about any aspect of this assessment, please ask for clarification from
your assessor. If the assessment is not satisfactory, the trainer will allow one more attempt to
the assessment item.

o The responses to assessment questions should be in your own words and examples from
workplace should be used wherever possible.

1. Assessment environment for this Unit

The assessment of this Unit will be in a simulated environment where you will be
provided access to:

 a site or prototype where network security may be implemented and managed

 network support tools currently used in industry
 Organizational security policies, manufacturer recommendations and security
standards.

Your trainer will provide further instructions on assessment conditions.

DK-SP-02/24 CS & Presentation-ICTNWK546 V3.1

RTO Provider Code: 91151
CRICOS Provider Code: 02668F
 2. The Assessment will cover

 Organizational network infrastructure

 Capabilities of software and hardware solutions
 Network management and security process controls
 Network security planning and implementation guidelines

3. Specific instructions

To do these activities you will need:

 Draw a complete network diagram using router, switches, firewalls and IPS/IDS
devices.
 Explain the feature of those installed devices
 Explain how the designed network avoids or reduces the information security
breaches.

4. Assessment task- What you are required to do

Case Study:
Activity 1:
i. Research one of the enterprise businesses in Australia. Plan and design
complete network solution architecture of that company. ( Eg.
Commonwealth Bank, Australia). To cover this activity you will need to
include the following items.
 Design a simple network diagram for that business. (Eg.
Commonwealth Bank Australia). Show the connectivity between its
main office (Data Center) and at least two branch offices.
 Use routers, switches, firewalls, IPS/IDS devices and necessary servers
(Web server, Mail server, Database Server) as required by the bank.
 Describe or write comments on each connectivity and devices you use
for.
 Show private server and public server DMZ
 Outline internet and intranet connectivity
 Also show your log servers for monitoring your logs
 Explain how your diagram mitigates the network attack issues.

DK-SP-02/24 CS & Presentation-ICTNWK546 V3.1

RTO Provider Code: 91151
CRICOS Provider Code: 02668F
Activity 2:
i. Explain computer security incident response lifecycle in details.
-Include preparation, investigation, remediation, containment, detection and
recovery items in your lifecycle and explain each.
- Sketch the diagram including the above items.

Activity 3: Presentation
Students are required to do their power point presentation in class based on the following
topic and items.

Topic: Manage Network Security

 Cover Page
 Overview of the topic
 What is security?
 Why we need security?
 Who is vulnerable?
 Common Security Attacks and their counter measures.
 Some of the security processes.
 Components of Network Security.
 Your recommendation
 Conclusion

References:

DK-SP-02/24 CS & Presentation-ICTNWK546 V3.1

RTO Provider Code: 91151
CRICOS Provider Code: 02668F
 5. OBSERVATION CHECKLIST (Assessor to complete)

Trainer/Assessor: Surendra Pathak

Student Name: _______________________Student ID: ________________

Satisfactory Assessor’s
performance comments
Yes/No
1. Define a process for designing security

1.1 Define planning phase for network security design

1.2 Define building phase for network security design

1.3 Define managing phase for network security design

2. Identify threats to network security

2.1 Determine why attacks occur

2.2 Determine who the attack may come from

2.3 Analyse common types of network vulnerabilities

2.4 Determine how attacks occur

2.5 Design a threat model to categorise treats

3. Analyse security risks

3.1 Determine elements of risk management

3.2 Determine assets that require protection

3.3 Categorise assets and calculate their value to the organisation

3.4 Create a risk management plan

4. Create a security design

4.1 Determine attacker scenarios and threats

4.2 Design security measures for network components

4.3 Obtain feedback and adjust if required

DK-SP-02/24 CS & Presentation-ICTNWK546 V3.1

RTO Provider Code: 91151
CRICOS Provider Code: 02668F
 Satisfactory Assessor’s
performance comments
Yes/No

4.4 Develop security policies

5. Design and implement responses to security incidents

5.1 Design auditing and incident response procedure

5.2 Document security incidents

5.3 Implement configurations aligned with incident response

procedure design

5.4 Test and sign off

Feedback to candidate:

__________________________________________________________________

__________________________________________________________________

__________________________________________________________________

___________________________

Overall Performance: ¨ Satisfactory (S) ¨ Not Satisfactory

(NS)
Candidate
Date:
Signature:

DK-SP-02/24 CS & Presentation-ICTNWK546 V3.1

RTO Provider Code: 91151
CRICOS Provider Code: 02668F