Course Title: Install, configure and test network security
Part B: Course Detail
Teaching Period: Term1 2025
Course Code: ISYS7579C
Course Title: Install, configure and test network security
Important Information:
Please note that this course may have compulsory in-person attendance requirements for some teaching activities.
Please check your Canvas course shell closer to the course start date to see if this course requires mandatory in-person attendance.
The delivery method of the course might have to change quickly in response to changes in course requirements. It is advisable for students to keep in contact with their teachers regarding in-person course attendance.
School: 520T Future Technologies
Campus: City Campus
Program: C4410 - Certificate IV in Information Technology
Course Contact: Harry Ouaida
Course Contact Phone: +61 3 9925 4612
Course Contact Email: harry.ouaida@rmit.edu.au
Name and Contact Details of All Other Relevant Staff
Nominal Hours: 50
Regardless of the mode of delivery, represent a guide to the relative teaching time and student effort required to successfully achieve a particular competency/module. This may include not only scheduled classes or workplace visits but also the amount of effort required to undertake, evaluate and complete all assessment requirements, including any non-classroom activities.
Pre-requisites and Co-requisites
None
Course Description
This course will provide you with the skills and knowledge required to install, configure and test network security in an organisational environment.
this course is clustered for delivery and assessment with the following unit:
ICTNWK423 - Manage Network and Data Integrity
National Codes, Titles, Elements and Performance Criteria
National Element Code & Title: |
ICTNWK421 Install, configure and test network security |
Element: |
1. Assess network security threats and vulnerabilities |
Performance Criteria: |
1.1 Review current system security against organisational asset security requirements to identify security threats and vulnerabilities 1.2 Analyse network, software, hardware and system security threats and vulnerabilities to prioritise deficiencies to be addressed 1.3 Make recommendations to management to address security deficiencies according to organisational asset security requirements |
Element: |
2. Implement countermeasures for identified threats and vulnerabilities |
Performance Criteria: |
2.1 Implement required level of perimeter security to meet organisational asset security requirements and according to identified threats and vulnerabilities 2.2 Assess and implement server and network hardening techniques and measures 2.3 Implement secure authentication and user account controls to secure data integrity and transmission |
Element: |
3. Test and verify functionality and performance of countermeasures implemented |
Performance Criteria: |
3.1 Design function and performance test items to verify key functions and performance of countermeasures 3.2 Conduct function and performance tests to modify and debug countermeasures 3.3 Develop documentation on the current system settings and file according to organisational guidelines |
Element: |
4. Maintain and improve network security |
Performance Criteria: |
4.1 Review logs and audit reports to identify and record security incidents, intrusions and attempts 4.2 Carry out spot checks and audits to ensure that procedures are not being bypassed 4.3 Document newly discovered security threats vulnerabilities and recommendations in a report for presentation to superior to gain approval recommendations to be implemented |
Learning Outcomes
On successful completion of this course the candidate will demonstrate the ability to complete the tasks outlined in the elements, performance criteria and foundation skills of this unit.
Details of Learning Activities
A range of learning activities are provided in this course.
- Firewalls
- Anti-Virus and Anti-Spyware Software
- Data Backup and Recovery
- File Encryption
- BitLocker
- Auditing of logon and file access
- DHCP MAC Filtering
- Basic System Administration
- Using tools to perform an inventory check on computer assets
- VPN Site to Site Authentication
- OSPF router authentication
- System Monitoring/Network Monitoring
- Comparing SSH to Telnet
- Environmental threats
- Account Lockout Policies
- Domain Environment
Teaching Schedule
The proposed teaching schedule for the two clustered competencies ( ICTNWK421 & ICTNWK423) is detailed below:
Week |
Date |
Topics/Discussions |
Assessments |
1 |
10th Feb - 14th Feb |
Firewalls |
Assessment 1 Practical Assessment & Product Assessment 2 Released |
2 |
17th Feb - 21st Feb |
Anti-Virus and Anti-Spyware Software |
|
3 |
24th Feb - 28th Feb |
Data Backup and Recovery |
|
4 |
3rd Mar - 7th Mar |
System Monitoring/Network Monitoring |
|
5 |
10th Mar - 14th Mar |
Auditing and BitLocker |
Product Assessment 2 Due |
6 |
17th Mar - 21st Mar |
Basic System Administration |
|
7 |
24th Mar - 28th Mar |
DHCP MAC Filtering |
|
8 |
31st Mar - 4th Apr |
Using tools to perform an inventory check on computer assets |
Knowledge Assessment Part 1 Released |
9 |
7th Apr- 11th Apr |
VPN Site-to-Site Connection |
Knowledge Assessment Part 1 Due |
10 |
14th Apr - 17th Apr |
Routing Protocol Authentication |
|
Mid Semester Break - 18th Apr - 25th Apr | |||
11 |
28th Apr - 2nd May |
Account Lockout Policies |
|
12 |
5th May - 9th May |
Comparing SSH to Telnet |
|
13 |
12th May - 16th May |
Environmental Threats |
|
14 |
19th May - 23rd May |
BitLocker Encryption |
Knowledge Assessment Part 2 Released |
15 |
26th May - 30th May |
Revision |
Knowledge Assessment Part 2 Due |
16 |
2nd June - 6th June |
Assessment 1 - Practical Assessment Submission |
Assessment 1 Practical Assessment Submission |
17 |
9th June - 13th June |
Feedback & Re-submission of Assessments (If applicable) |
|
18 |
16th June - 20th June |
Feedback & Re-submission of Assessments (If applicable) |
|
*Please note that this timeline is subject to change based on semester requirements. We recommend checking your Canvas course shell regularly to stay updated with the latest schedule.
Student directed hours involve completing activities such as reading online resources, assignments, individual student/teacher course-related consultation. Students are required to self-study the learning materials and complete the assigned out of class activities for the scheduled non-teaching hours.
Learning Resources
Prescribed Texts
References
Other Resources
Software
Throughout this course it is essential to get hands on practice on the key skills needed learnt in class so that students can replicate these same skills in a production environment. The knowledge and experience that the students need to get the most out of this unit is quite broad and many tools are needed to maximize their learning.
The following contains a list of Software and Software tools that will be needed throughout the semester to maximize the hands-on experience.
Lab Setup
For the lab I recommend the following resources just to set up their networking and security environment:
Virtual Machine Environment
Depending on the device the student has I recommend looking into the following Virtualization environments.
- VirutalBox (Windows 10, 11 and MacOS Intel)
- VMWare Free Edition (Windows 10,11, MacOS intel and MacOS M Series)
- Hyper-V (Windows 10 Professional Edition and Windows 11 Professional Edition)
- UTM (Highly recommended for MacOS M series)
Simulated Clients
Windows 10 Education ISO
Linux Mint
Simulated Servers
Windows 2022 Server ISO
Linux Ubuntu Server (File server, backups, web server, etc)
Pentesting Virtual Machine
KaliLinux
SOC Virtual Machine
KaliLinux Purple
Vulnerable Virtual Machine
Metasploitable (Vulnerable machine open to Network, Software, Application attacks)
Networking Software/Security Software
A wide range of free networking and security tools will be a great way for students to learn some of the critical concepts within this subject. Before students start the course, it is highly advisable to start looking into the following tools and start some research:
- Wireshark
- Nmap (Linux), Zenmap (Windows)
- Cisco’s Packtracer
- Nessus Essentials
- Angry IP Scanner
- Sysinternals
- iPerf
- SolarWinds Real-Time Bandwidth Monitor (Free Tool)
Please note that links to all of the above software resources will be provided throughout this course.
Overview of Assessment
Assessment for this course is ongoing throughout the semester. Your knowledge and understanding of course content is assessed through participation in class exercises and various types of assessments.
Full assessment briefs will be provided and can be found on CANVAS.
Assessment Tasks
Assessment occurs throughout the program and includes learning and assessment activities conducted in the classroom, online and in the workplace giving you the opportunity to practice and be assessed on what you are learning in a work context. You must demonstrate an understanding of all elements of a particular competency to be deemed competent. Assessment methods have been designed to measure achievement of each competency in a flexible manner over a range of assessment tasks.
Assessment will incorporate a variety of methods including technical requirements, documentation, in class exercises, quizzes, practical problem solving exercises and presentations. Participants are advised that they are likely to be asked to personally demonstrate their assessment work to their teacher to ensure that the relevant competency standards are being met.
Assessment in this course will involve the following activities
Task 1. Assignment: You are required to assess and identify security threats, vulnerabilities and risks, determine appropriate countermeasure for threats
Task 2. Assignment: You are required to implement security and monitoring to a live system based on the assessment brief.
Task 3. Assignment. You will be required to verify and modify the functionality of an implemented security system
Task 4. Assignment. You will be required to implement secure data transmission, test, monitor, log and update security systems.
Assessment Matrix
Assessment Mapping Matrix
| Elements/Performance Criteria | Task 1 Assignment 1 | Task 2 Assignment 2 | Task 3 Assignment 3 | Task 4 Assignment 4 |
| 1.1 | X | X | ||
| 1.2 | X | X | ||
| 1.3 | X | X | ||
| 2.1 | X | X | X | X |
| 2.2 | X | X | X | X |
| 2.3 | X | X | X | X |
| 3.1 | X | X | ||
| 3.2 | X | X | ||
| 3.3 | X | X | ||
| 4.1 | X | X | ||
| 4.2 | X | X | ||
| 4.3 | X | X |
| |||
The candidate must be able to demonstrate knowledge to complete the tasks outlined in the elements and performance criteria of this unit. This includes: |
Assessment Task 1: Practical Assessment
|
Assessment Task 2: Assignment |
Assessment Task 3: online Quizzes |
|
Security requirements of the organisation, including:
|
|
|
Question 38, Question 37, Question 39, Question 35, Question 36 |
Virtual private network (VPN) issues, including bandwidth and dynamic security environment |
|
|
Question 40 |
Configuration of routers and switches |
|
|
Question 41 |
Current hardware and software security products, including general features and capabilities |
|
|
Question 42, Question 43 |
Function and operation of VPN concepts including encryption, firewalls, packet tunnelling, and authentication |
|
|
Question 44 |
Network protocols and operating systems |
|
|
Question 50 |
Security perimeters and functions |
|
|
Question 48, Question 49 |
Security protocols, standards and data encryption |
|
|
Question 44 |
Security threats including eavesdropping, data interception, data corruption and data falsification |
|
|
Question 47 |
Types of VPNs including site-to-site and user-to-site internet traffic and extranets |
|
|
Question 36 |
|
Systems and procedures related to:
|
|
Task 9 |
Question 48, Question 49, Question 51, Question 54 |
Performance Evidence | |||
|
The candidate must demonstrate the ability to complete the tasks outlined in the elements and performance criteria of this unit; including evidence of the ability to:
|
Assessment Task 1: Practical Assessment
|
Assessment Task 2: Assignment |
Assessment Task 3: online Quizzes |
|
With respect to one network:
|
Task 12 Task 13
Task 15 Task 16
|
Task 10 Task 11
Task 8 |
|
Element |
Performance criteria |
|
|
|
|
|
Assessment Task 1: Practical Assessment |
Assessment Task 2: Assignment |
Assessment Task 3: online Quizzes |
1. Assess network security threats and vulnerabilities |
1.1 Review current system security against organisational asset security requirements to identify security threats and vulnerabilities |
Task 12 Task 13 Task 15 Task 16 Task 6 |
|
Question 37 |
1.2 Analyse network, software, hardware and system security threats and vulnerabilities to prioritise deficiencies to be addressed |
Task 1 Task 10 Task 4
|
|
Question 39, Question 47 |
|
1.3 Make recommendations to management to address security deficiencies according to organisational asset security requirements |
Task 12 Task 13 Task 14 |
|
Question 41 |
|
|
2. Implement countermeasures for identified threats and vulnerabilities
|
2.1 Implement required level of perimeter security to meet organisational asset security requirements and according to identified threats and vulnerabilities
|
Task 12, Task 13 |
|
Questions 48 – 55,
Question 46
Questions 42 - 43 |
|
2.2 Assess and implement server and network hardening techniques and measures
|
Task 1 Task 14 Task 15 Task 16 |
|
|
|
|
2.3 Implement secure authentication and user account controls to secure data integrity and transmission
|
Task 14 Task 15 Task 9 |
|
|
|
|
3. Test and verify functionality and performance of countermeasures implemented
|
3.1 Design function and performance test items to verify key functions and performance of countermeasures
|
Task 12 Task 13 |
|
|
|
3.2 Conduct function and performance tests to modify and debug countermeasures
|
Task 4 Task 5
|
|
|
|
|
3.3 Develop documentation on the current system settings and file according to organisational guidelines
|
|
Task 10 Task 11 |
|
|
|
4. Maintain and improve network security
|
4.1 Review logs and audit reports to identify and record security incidents, intrusions and attempts
|
|
Task 8 |
|
|
4.2 Carry out spot checks and audits to ensure that procedures are not being bypassed |
Task 8 |
|
|
|
4.3 Document newly discovered security threats vulnerabilities and recommendations in a report for presentation to superior to gain approval recommendations to be implemented |
|
|
Question 42, Question 43, Question 44, Question 48, Question 56 |
Other Information
Credit Transfer and/or Recognition of Prior Learning (RPL):
You may be eligible for credit towards courses in your program if you have already met the learning/competency outcomes through previous learning and/or industry experience. To be eligible for credit towards a course, you must demonstrate that you have already completed learning and/or gained industry experience that is:
- Relevant
- Current
- Satisfies the learning/competency outcomes of the course
Please refer to http://www.rmit.edu.au/students/enrolment/credit to find more information about credit transfer and RPL
Study and learning Support:
Study and Learning Centre (SLC) provides free learning and academic development advice to you.
Services offered by SLC to support your numeracy and literacy skills are:
- assignment writing, thesis writing and study skills advice
- maths and science developmental support and advice
- English language development
Please Refer http://www.rmit.edu.au/studyandlearningcentre to find more information about Study and learning Support
Equitable Learning Services (ELS):
If you are suffering from long-term medical condition or disability, you should contact Equitable Learning Services (ELS) to seek advice and support to complete your studies.
Please refer to https://www.rmit.edu.au/students/support-and-facilities/student-support/equitable-learning-services to find more information about services offered by Equitable Learning Services (ELS).
Late submission:
If you require an Extension of Submittable Work (assignments, reports or project work etc.) for 7 calendar days or less (from the original due date) and have valid reasons, you must complete and lodge an Application for Extension of Submittable Work (7 Calendar Days or less) form and lodge it with the Senior Educator/ Program Manager.
The application must be lodged no later than one working day before the official due date. You will be notified within no more than 2 working days of the date of lodgment as to whether the extension has been granted.
If you seek an Extension of Submittable Work for more than 7 calendar days (from the original due date) must lodge an Application for Special Consideration form under the provisions of the Special Consideration Policy, preferably prior to, but no later than 2 working days after the official due date.
Submittable Work (assignments, reports or project work etc.) submitted late without approval of an extension will not be accepted or marked.
Special consideration:
Please Refer http://www.rmit.edu.au/students/specialconsideration to find more information about special consideration
Plagiarism:
Plagiarism is a form of cheating and it is very serious academic offence that may lead to expulsion from the University.
Please Refer: www.rmit.edu.au/academicintegrity to find more information about plagiarism.
Other Information:
All email communications will be sent to your RMIT email address and you must regularly check your RMIT emails.
Course Overview: Access Course Overview