UNIT 5: Security
QUALIFICATION: Higher National Certificate in Computing Level 4
YEAR: 2019-2020
PREPARED BY: Kunwar Singh
REPORT
Assessor name: Mrs. Kalpana Mane
SUBMITTED ON:
1|Page
, In this assessment you will have the Page no
Assessment Task
Learning Outcome opportunity to present evidence
Criteria no. (Page
that shows you are able to:
no)
Identify types of security risks to 4-7
1
LO1 Assess risks to P1 organisations.
IT security Describe organisational security 8-10
P2 1
procedures.
M1 Propose a method to assess and treat 11-13
1
IT security risks.
D1 Investigate how a ‘trusted network’ 24-29
1
[LO1/LO2] may be part of an IT security solution.
P3 Identify the potential impact to IT 14-17
LO2: Describe IT
security of incorrect configuration of 2
security solutions
firewall policies and third-party VPNs.
P4 Show, using an example for each, how 18-19
implementing a DMZ, static IP and
2
NAT in a network can improve
Network Security.
M2 Discuss three benefits to implement 19-24
network monitoring systems with 2
supporting reasons.
LO3: Review P5 30-35
mechanisms to
control Discuss risk assessment procedures. 3
organisational
IT security
P6 Explain data protection processes and 36-37
regulations as applicable to an 3
organisation.
M3 Summarise the ISO 31000 risk 38-43
management methodology and its 3
application in IT security.
2|Page
, M4 Discuss possible impacts to 44-48
organisational security resulting from 3
an IT security audit.
D2 Consider how IT security can be 49-52
aligned with organisational policy,
3
detailing the security impact of any
misalignment.
LO4: Manage P7 53-54
Design and implement a security
organisational 4
policy for an organisation.
security
P8 List the main components of an 55-56
organisational disaster recovery plan, 4
justifying the reasons for inclusion.
M5 Discuss the roles of stakeholders in 57-59
the organisation to implement security 4
audit recommendations.
D3 Evaluate the suitability of the tools 60-65
4
used in an organisational policy.
References 66
3|Page
, 4|Page
QUALIFICATION: Higher National Certificate in Computing Level 4
YEAR: 2019-2020
PREPARED BY: Kunwar Singh
REPORT
Assessor name: Mrs. Kalpana Mane
SUBMITTED ON:
1|Page
, In this assessment you will have the Page no
Assessment Task
Learning Outcome opportunity to present evidence
Criteria no. (Page
that shows you are able to:
no)
Identify types of security risks to 4-7
1
LO1 Assess risks to P1 organisations.
IT security Describe organisational security 8-10
P2 1
procedures.
M1 Propose a method to assess and treat 11-13
1
IT security risks.
D1 Investigate how a ‘trusted network’ 24-29
1
[LO1/LO2] may be part of an IT security solution.
P3 Identify the potential impact to IT 14-17
LO2: Describe IT
security of incorrect configuration of 2
security solutions
firewall policies and third-party VPNs.
P4 Show, using an example for each, how 18-19
implementing a DMZ, static IP and
2
NAT in a network can improve
Network Security.
M2 Discuss three benefits to implement 19-24
network monitoring systems with 2
supporting reasons.
LO3: Review P5 30-35
mechanisms to
control Discuss risk assessment procedures. 3
organisational
IT security
P6 Explain data protection processes and 36-37
regulations as applicable to an 3
organisation.
M3 Summarise the ISO 31000 risk 38-43
management methodology and its 3
application in IT security.
2|Page
, M4 Discuss possible impacts to 44-48
organisational security resulting from 3
an IT security audit.
D2 Consider how IT security can be 49-52
aligned with organisational policy,
3
detailing the security impact of any
misalignment.
LO4: Manage P7 53-54
Design and implement a security
organisational 4
policy for an organisation.
security
P8 List the main components of an 55-56
organisational disaster recovery plan, 4
justifying the reasons for inclusion.
M5 Discuss the roles of stakeholders in 57-59
the organisation to implement security 4
audit recommendations.
D3 Evaluate the suitability of the tools 60-65
4
used in an organisational policy.
References 66
3|Page
, 4|Page
