Course Title: Install, configure and test network security
Part B: Course Detail
Teaching Period: Term2 2024
Course Code: ISYS7579C
Course Title: Install, configure and test network security
Important Information:
Please note that this course may have compulsory in-person attendance requirements for some teaching activities.
To participate in any RMIT course in-person activities or assessment, you will need to comply with RMIT vaccination requirements which are applicable during the duration of the course. This RMIT requirement includes being vaccinated against COVID-19 or holding a valid medical exemption.
Please read this RMIT Enrolment Procedure as it has important information regarding COVID vaccination and your study at RMIT: https://policies.rmit.edu.au/document/view.php?id=209.
Please read the Student website for additional requirements of in-person attendance: https://www.rmit.edu.au/covid/coming-to-campus
Please check your Canvas course shell closer to when the course starts to see if this course requires mandatory in-person attendance. The delivery method of the course might have to change quickly in response to changes in the local state/national directive regarding in-person course attendance.
School: 520T Future Technologies
Campus: City Campus
Program: C4410 - Certificate IV in Information Technology
Course Contact: Donald Attard
Course Contact Phone: +61 3 9925 4381
Course Contact Email: donald.attard@rmit.edu.au
Name and Contact Details of All Other Relevant Staff
Nominal Hours: 50
Regardless of the mode of delivery, represent a guide to the relative teaching time and student effort required to successfully achieve a particular competency/module. This may include not only scheduled classes or workplace visits but also the amount of effort required to undertake, evaluate and complete all assessment requirements, including any non-classroom activities.
Pre-requisites and Co-requisites
None
Course Description
This course will provide you with the skills and knowledge required to install, configure and test network security in an organisational environment.
This course is clustered for delivery and assessment with the following course
ICTNWK423 - Manage network and data integrity
National Codes, Titles, Elements and Performance Criteria
National Element Code & Title: |
ICTNWK421 Install, configure and test network security |
Element: |
1. Assess network security threats and vulnerabilities |
Performance Criteria: |
1.1 Review current system security against organisational asset security requirements to identify security threats and vulnerabilities 1.2 Analyse network, software, hardware and system security threats and vulnerabilities to prioritise deficiencies to be addressed 1.3 Make recommendations to management to address security deficiencies according to organisational asset security requirements |
Element: |
2. Implement countermeasures for identified threats and vulnerabilities |
Performance Criteria: |
2.1 Implement required level of perimeter security to meet organisational asset security requirements and according to identified threats and vulnerabilities 2.2 Assess and implement server and network hardening techniques and measures 2.3 Implement secure authentication and user account controls to secure data integrity and transmission |
Element: |
3. Test and verify functionality and performance of countermeasures implemented |
Performance Criteria: |
3.1 Design function and performance test items to verify key functions and performance of countermeasures 3.2 Conduct function and performance tests to modify and debug countermeasures 3.3 Develop documentation on the current system settings and file according to organisational guidelines |
Element: |
4. Maintain and improve network security |
Performance Criteria: |
4.1 Review logs and audit reports to identify and record security incidents, intrusions and attempts 4.2 Carry out spot checks and audits to ensure that procedures are not being bypassed 4.3 Document newly discovered security threats vulnerabilities and recommendations in a report for presentation to superior to gain approval recommendations to be implemented |
Learning Outcomes
On successful completion of this course you will have developed and applied the skills and knowledge required to demonstrate competency in the above elements
Details of Learning Activities
- Firewalls
- Anti-Virus and Anti-Spyware Software
- Data Backup and Recovery
- File Encryption
- BitLocker
- Auditing of logon and file access
- DHCP MAC Filtering
- Basic System Administration
- Using tools to perform an inventory check on computer assets
- VPN Site to Site Authentication
- OSPF router authentication
- System Monitoring/Network Monitoring
- Comparing SSH to Telnet
- Environmental threats
- Account Lockout Policies
- Domain Environment
Teaching Schedule
Week |
Topics Delivered |
1 |
Firewalls
|
2 |
Anti-Virus and Anti-Spyware Software |
3 |
Data Backup and Recovery |
4 |
System Monitoring/Network Monitoring |
5 |
Auditing and BitLocker |
6 |
Basic System Administration
|
7 |
DHCP MAC Filtering |
8 |
Using tools to perform an inventory check on computer assets |
9 |
VPN Site-to-Site Connection |
10 |
Routing Protocol Authentication |
11 |
Account Lockout Policies |
12 |
Comparing SSH to Telnet |
13 |
Environmental Threats |
14 |
BitLocker Encryption |
15-16 |
Resubmissions/Tutorials |
* Subject to Change
Learning Resources
Prescribed Texts
References
Other Resources
Overview of Assessment
Assessment for this course is ongoing throughout the semester. Your knowledge and understanding of course content is assessed through participation in class exercises, oral presentations and through the application of learned skills and insights to your written tasks. Full assessment briefs will be provided and can be found on CANVAS.
Assessment Tasks
Assessment 1: Practical
Assessment 2: Project
Assessment 3: Knowledge
* Students must obtain 100% to pass
Assessment Matrix
| |||
The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements and performance criteria of this unit. This includes: |
Assessment Task 1: Practical Assessment
|
Assessment Task 2: Assignment |
Assessment Task 3: online Quizzes |
|
Security requirements of the organisation, including:
|
|
|
Question 38, Question 37, Question 39, Question 35, Question 36 |
Virtual private network (VPN) issues, including bandwidth and dynamic security environment |
|
|
Question 40 |
Configuration of routers and switches |
|
|
Question 41 |
Current hardware and software security products, including general features and capabilities |
|
|
Question 42, Question 43 |
Function and operation of VPN concepts including encryption, firewalls, packet tunnelling, and authentication |
|
|
Question 44 |
Network protocols and operating systems |
|
|
Question 50 |
Security perimeters and functions |
|
|
Question 48, Question 49 |
Security protocols, standards and data encryption |
|
|
Question 44 |
Security threats including eavesdropping, data interception, data corruption and data falsification |
|
|
Question 47 |
Types of VPNs including site-to-site and user-to-site internet traffic and extranets |
|
|
Question 36 |
|
Systems and procedures related to:
|
|
Task 9 |
Question 48, Question 49, Question 51, Question 54 |
Performance Evidence | |||
|
The candidate must demonstrate the ability to complete the tasks outlined in the elements and performance criteria of this unit; including evidence of the ability to:
|
Assessment Task 1: Practical Assessment
|
Assessment Task 2: Assignment |
Assessment Task 3: online Quizzes |
|
With respect to one network:
|
Task 12 Task 13
Task 15 Task 16
|
Task 10 Task 11
Task 8 |
|
Element |
Performance criteria |
|
|
|
|
|
Assessment Task 1: Practical Assessment |
Assessment Task 2: Assignment |
Assessment Task 3: online Quizzes |
1. Assess network security threats and vulnerabilities |
1.1 Review current system security against organisational asset security requirements to identify security threats and vulnerabilities |
Task 12 Task 13 Task 15 Task 16 Task 6 |
|
Question 37 |
1.2 Analyse network, software, hardware and system security threats and vulnerabilities to prioritise deficiencies to be addressed |
Task 1 Task 10 Task 4
|
|
Question 39, Question 47 |
|
1.3 Make recommendations to management to address security deficiencies according to organisational asset security requirements |
Task 12 Task 13 Task 14 |
|
Question 41 |
|
|
2. Implement countermeasures for identified threats and vulnerabilities
|
2.1 Implement required level of perimeter security to meet organisational asset security requirements and according to identified threats and vulnerabilities
|
Task 12, Task 13 |
|
Questions 48 – 55,
Question 46
Questions 42 - 43 |
|
2.2 Assess and implement server and network hardening techniques and measures
|
Task 1 Task 14 Task 15 Task 16 |
|
|
|
|
2.3 Implement secure authentication and user account controls to secure data integrity and transmission
|
Task 14 Task 15 Task 9 |
|
|
|
|
3. Test and verify functionality and performance of countermeasures implemented
|
3.1 Design function and performance test items to verify key functions and performance of countermeasures
|
Task 12 Task 13 |
|
|
|
3.2 Conduct function and performance tests to modify and debug countermeasures
|
Task 4 Task 5
|
|
|
|
|
3.3 Develop documentation on the current system settings and file according to organisational guidelines
|
|
Task 10 Task 11 |
|
|
|
4. Maintain and improve network security
|
4.1 Review logs and audit reports to identify and record security incidents, intrusions and attempts
|
|
Task 8 |
|
|
4.2 Carry out spot checks and audits to ensure that procedures are not being bypassed |
Task 8 |
|
|
|
4.3 Document newly discovered security threats vulnerabilities and recommendations in a report for presentation to superior to gain approval recommendations to be implemented |
|
|
Question 42, Question 43, Question 44, Question 48, Question 56 |
Course Overview: Access Course Overview