Course Title: Design and implement a security perimeter for ICT networks

Part B: Course Detail

Teaching Period: Term1 2024

Course Code: INTE5065C

Course Title: Design and implement a security perimeter for ICT networks

School: 520T Future Technologies

Campus: City Campus

Program: C4424 - Certificate IV in Cyber Security

Course Contact: Tim Bek

Course Contact Phone: +61 3 9925 1409

Course Contact Email:

Name and Contact Details of All Other Relevant Staff

Nominal Hours: 60

Regardless of the mode of delivery, represent a guide to the relative teaching time and student effort required to successfully achieve a particular competency/module. This may include not only scheduled classes or workplace visits but also the amount of effort required to undertake, evaluate and complete all assessment requirements, including any non-classroom activities.

Pre-requisites and Co-requisites


Course Description

In this course you will gain the skills and knowledge required to build a high performance, high security, failure resistant security perimeter for an enterprise Information and Communications Technology (ICT) network.

National Codes, Titles, Elements and Performance Criteria

National Element Code & Title:

ICTNWK544 Design and implement a security perimeter for ICT networks


1. Plan and design firewall solution

Performance Criteria:

1.1 Identify organisational and industry standard security threats
according to organisational policies and procedures
1.2 Determine required firewall security according to
organisational requirements
1.3 Research and identify available perimeter security options
according to organisational requirements
1.4 Design security perimeter according to organisational


2. Configure perimeter to secure network

Performance Criteria:

2.1 Deploy required perimeter devices according to network
security requirements
2.2 Configure required perimeter topology according to network
security requirements
2.3 Configure basic functionality of devices according to network
security requirements
2.4 Configure required advanced functions according to network
security requirements


3. Design and configure network devices

Performance Criteria:

3.1 Back up device configuration according to network security
3.2 Design and configure perimeter and enable continuity of
service during devices upgrades
3.3 Design and configure perimeter and enable continuity of
service in event of device failure


4. Configure VPN solution

Performance Criteria:

4.1 Configure perimeter for site-to-site virtual private networks
4.2 Configure perimeter as a remote access VPN server
4.3 Configure perimeter to allow VPN tunnel forwarding
4.4 Diagnose and resolve VPN connectivity issues according to
network security requirements

Learning Outcomes

On successful completion of this course you will have developed and applied the skills and knowledge required to demonstrate competency in the above elements

Details of Learning Activities

This unit describes the performance outcomes, skills and knowledge required to comprehend how data travels around the internet. It includes the function and operation of protocols such as Open System Interconnection (OSI) and Transmission Control Protocol/Internet Protocol (TCP/IP) suite and devices that facilitate data transfer. The exposure to these protocols is at an intermediate level in this unit. The unit applies to individuals working as cyber security technicians and supports their ability to detect breaches in security infrastructure.

In addition, students will become proficient in securing networks through the use of AAA modules, Zone-Based Firewalls, designing and deploying stand-alone and managed wireless networks, setting up VPNs, implementing switchport solutions, and deploying Adaptive Security Appliances.

Learning activities may be modified during the semester to meet the needs of students in the current program.

Activities will come from a range of the following:

  • Classroom and online presentations
  • Classroom and Laboratory Activities and Activity Tasks
  • PowerPoint presentations
  • Internet research
  • Assessments/Portfolios

Teaching Schedule

Week Number Topics Assessment Tasks
1 Modern Network Security Threats  
2 Securing Network Devices  
3 FHRP Concepts   
4 Authentication, Authorization, and Accounting  Lab Check in
5 Managing a Secure Network  Theory exam Released Due week 16
6 Proxy Servers Practical Assessment 1 Released Due Week 12
7 WLAN   
  Inter-semester break  Lab Check in
8 Implementing Firewall Technologies   
9 Implementing Intrusion Prevention  
10 Securing the Local Area Network   
11 Cryptographic Systems  Lab Check in
12 Implementing Virtual Private Networks  Final Practical Exam Released Due week 16 
13 Implementing the Cisco Adaptive Security Appliance  
14 Network Troubleshooting  Lab Check in.
15 and 16 Assessment Week Final Week all assessment and demonstrations due by end of week 16.

Learning Resources

Prescribed Texts


Other Resources

This unit utilises Cisco's Networking Academy courses that are centered on Routing and Switching, Network Security and Network Automation.

Overview of Assessment

Assessment for this course is ongoing throughout the semester. Your knowledge and understanding of course content is assessed through participation in class exercises, oral/written presentations and through the application of learned skills and insights. Full assessment briefs will be provided and can be found on CANVAS

Assessment Tasks

There are three Assessment Tasks for this unit:

  • Assessment Task 1 - Knowledge Assessment
  • Assessment Task 2 - Project
  • Assessment Task 3 - Project

Assessment Matrix

Elements/Performance Criteria Assessment 1 Assessment 2 Assessment 3
1.1 x x x
1.2  x x x
1.3 x x x
1.4 x x x
2.1  x x x
2.2  x x x
2.3 x x x
2.4 x x x
3.1 x x x
3.2 x x x
3.3 x x x
4.1 x   x
4.2 x   x
4.3 x   x
4.4 x   x
5.1 x   x
5.2 x   x
5.3 x   x
5.4 x   x


Course Overview: Access Course Overview