Qualification Specification. Level 2 Award in Cyber Security Awareness For Business

Similar documents
Qualification Specification. Level 2 Award in Cyber Security Awareness For Business

Qualification Specification. Level 2 Award in Bid Management

Level 5 Award in Understanding the Management of Physical and Cyber Asset Security in the Water and Environmental Industries

Level 1 Award in Employee Rights and Responsibilities (QCF)

Level 2 Award in Control of Water-borne Infections within Healthcare

Level 2 Award in Understanding the Criminal Justice System (QCF) Qualification Specification

Qualification Specification. Level 2 Award in Problem Solving for Practitioners In Community Safety and Crime Prevention

Level 2 Award in Utility Avoidance and the Location of Buried Services in Construction

Level 2 Award in Understanding the PREVENT And Safeguarding Strategies

Level 3 Award in Introduction to Crime Prevention

ProQual Internal Quality Assurance Qualifications

Level 2 Award in Utility Avoidance and the Location of Buried Services in Construction (QCF)

Level 2 Certificate in Asbestos Removal For Operatives

Level 5 Award in the Independent Auditing of External Quality Assurance. Qualification Specification

ProQual External Quality Assurance Qualifications. Level 4 Award in the External Quality Assurance of Assessment Processes and Practice

Level 2 Certificate in Asbestos Removal For Operatives (QCF)

Level 5 Diploma in Crime Prevention Designing Out Crime

Qualification Specification. Level 3 Award in Eyebrow Treatments Brow Broidery Microblading

Qualification Specification. Level 3 Award in Driving Licence Checking

IQ Level 4 Award in Understanding the External Quality Assurance of Assessment Processes and Practice (QCF) Specification

Level 3 Diploma in Social Media for Business. Qualification Specification

QUALITY ASSURANCE POLICY. Quality Assurance Policy. September 2016 Version 2.0 Policy authorised by Responsible Officer

National Vocational Qualifications Delivered Overseas policy

Qualification Specification. Suite of Internal Quality Assurance Qualifications

The Learner can: 1.1 Describe the common types of security breach that can affect the organisation, such as:

Qualification Specification Summary Highfield Level 3 Award in Undertaking End-Point Assessment (RQF)

EFFICIENT, EFFECTIVE, RESPONSIVE QUALIFICATIONS FOR INDUSTRY

Specification. Edexcel qualifications. Edexcel Level 3 Award in Reviewing Health and Safety Procedures in the Workplace(QCF)

Principles of Contact Centre Operations OCR Level 2 Certificate/Level 3 Certificate in Principles of Contact Centre Operations

Pearson BTEC Level 4 Diploma in Information Security Professional Competence

TQUK Level 2 Award in Principles of COSHH Risk Assessment (RQF)

OCR LEVEL 1 NVQ FOR IT USERS (03384) OCR LEVEL 2 NVQ FOR IT USERS (03385) OCR LEVEL 3 NVQ FOR IT USERS (03386)

EFFICIENT, EFFECTIVE, RESPONSIVE QUALIFICATIONS FOR INDUSTRY

Qualification Manual. EAL Level 2 Certificate in Metals Industries Processes QUALIFICATION CODE: 500/7998/0 ISSUE: 2. Page 1 of 14

NZ Certificate in Credit Management (Level 4)

BIIAB Level 2 Certificate in Libraries, Archives and Information Services (QCF)

TQUK Level 2 Award in Safe Moving and Handling (RQF)

Qualification Specification

ITC Level 3 Award in Teaching and Assessing First Aid Qualifications G50.T. Qualification Specification Guidance for Centres

Exploring Technical Qualifications. Janet King, Senior Subject Specialist

Qualification Specification

QCF. Leisure Operations. Centre Handbook. OCR Level 2 Certificate in Leisure Operations Entry code 10279

Advanced Manufacturing. and Engineering. Safe Working Practice in the Wind Turbine Industry. Level 2 Diploma in. Qualification Specification

Qualification Specification. Higher Apprenticeship in Business & Professional Administration Level 4 (England)

Audit Report. Chartered Management Institute (CMI)

Provider Monitoring Report. City and Guilds

Qualification Specification. Skills for Engineering Level 1

Highway Electrical CBQ s

QCF. Business and Administration. Centre Handbook

EFFICIENT, EFFECTIVE, RESPONSIVE QUALIFICATIONS FOR INDUSTRY

New Zealand Certificate in Contact Centres (Level 3)

Qualification Guide. BPEC Level 2 Award in the Principles of Metering for Renewable Heat Installations (QCF) Qualification Number - 601/5226/6

Recognition of Prior Learning - Guidance for Staff

QCF. Understanding Business Enterprise. Centre Handbook

1 Qualification Specification

Unit 3 Cyber security

Qualification Specification Highfield Level 1 Award in Health and Safety within a Construction Environment (RQF)

BCS Higher Education Qualifications. Diploma in IT. Professional Project Syllabus

Qualification Specification

Group Award Specification for:

Qualification Specification

Edexcel Level 4 Awards and Certificates in Assuring the Quality of Assessment (QCF)

Pearson Assured Your independent quality benchmark 1/20

Audit Report. The Prince s Trust. 27 September 2017

Post-accreditation monitoring report: British Computer Society (BCS) September 2006 QCA/06/2926

ITQ Assessment Strategy

PRIOR LEARNING ASSESSMENT AND RECOGNITION (PLAR)

Designing Messaging Solutions with Microsoft Exchange Server 2007 (70-237)

NOCN_Cskills Awards Level 1 Diploma in Construction and Civil Engineering Services (Construction)

Studio and Location Sound Production

Unit 2 Essentials of cyber security

OCR Level 3 Award in Administration (Business Professional) Entry code 03958

FUNCTIONAL SKILLS. Functional Skills in English, Maths and ICT. Levels 1 and 2. Qualification Specification. Issue B. Overview

Qualifications 2016/ (0) Page 1 of 31

Title: EAL Level 2 Certificate in BusinessImprovement Techniques (QCF) At a glance. Level: Credit value: Guided learning hours: Minimum learner age:

Regulation update Monitoring and Compliance

BCS Level 4 Certificate in Cyber Security Introduction Syllabus QAN 603/0830/8

Text Processing (Business Professional) OCR Level 3 Award in Text Processing (Business Professional) Entry code 06961

Registration of the assessment team and candidates can be completed in the following manner;

Qualification Specification Level 4 Award in Food Safety Management for Manufacturing

Roles and Responsibilities of those involved in the Training, Assessment and Quality Assurance Processes

IT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)

IMI Level 3 Award in Automotive Refrigerant Handling (EC ) I.D NO: 500/6771/0

Guidance for Centre Internal Verification Procedures

Qualification Specification. Social Media and Digital Marketing (England) Advanced Apprenticeship in Social Media and Digital Marketing

CACHE Level 4. Internal Quality Assurance Qualifications. Qualification facts

Name of centre Morris Services Ltd. Address of centre or assessment site Postcode. Isouth West

BIIAB ICT Systems and Principles for IT Practitioners and Professionals Qualifications Handbook

Qualification Manual. Level 3 Diploma in NGINEERING. Fabrication and Welding. Engineering Technology. Qualification Code: 501/1131/0. Issue 2.

CIBTAC LEVEL 3 CERTIFICATE IN MEDIA MAKE-UP CMC02 QAN 603/2350/4. Qualification Specification

QCF. Business Skills. Centre Handbook

Specification. Edexcel Levels 1 and 2. For first teaching September Issue 3

Systems and Principles Unit Syllabus

Awards and Certificates in Employability Skills (Northern Ireland) (5546)

ILM Customer Handbook (for ILM Centres and Providers)

Pearson BTEC Level 2 Diploma in Professional Competence for IT and Telecoms Professionals

NOCN_Cskills Awards Level 2 NVQ Diploma in Plant Operations (Construction) - In-shore Marine

Information Security Controls Policy

Level 5 Diploma in Computing

Qualification Specification NCFE Functional Skills qualification in Information and Communication Technology (ICT) at Level 2 (600/0139/2)

Transcription:

Qualification Specification Level 2 Award in Cyber Security Awareness For Business ProQual 2016

Contents Page Introduction 3 Qualification profile 3 Centre requirements 4 Support for candidates 4 Assessment 5 Internal quality assurance 5 Adjustments to assessment 5 Results enquiries and appeals 6 Certification 6 Learning Outcomes and Assessment Criteria 7 2

Introduction This qualification is appropriate for individuals employed in all levels of an organisation across any sector in which ICT systems are used as part of the business. Topics include the principles of cyber security, threats to organisational security, safe ICT use and the importance of implementing cyber security policies. The awarding organisation for this qualification is ProQual Awarding Body and the regulatory body is the Office of Qualifications and Examinations Regulation (Ofqual). The specification for these qualifications has been approved by the Welsh Government for use by centres in Wales. Entry Requirements There are no formal entry requirements for this qualification. Centres should carry out an initial assessment of candidate skills and knowledge to identify any gaps and help plan the assessment. Qualification Profile Qualification title Ofqual qualification number Level 2 Total Qualification Time Assessment ProQual Level 2 Award in Cyber Security Awareness for Business 601/8257/X 10 hours Qualification start date 1/1/16 Qualification end date Pass or fail Internally assessed and verified by centre staff External quality assurance by ProQual verifiers Qualification Structure Candidates must complete the 2 Mandatory units. M/507/9765 Understanding cyber security risks to business T/507/9766 Understanding the effective implementation of cyber security policies for business 3

Centre Requirements Centres must be approved to offer this qualification. If your centre is not approved please complete and submit form ProQual Additional Qualification Approval Application. Staff Staff delivering this qualification must be appropriately qualified and occupationally competent. Assessors/Internal Quality Assurance For each competence-based unit centres must be able to provide at least one assessor and one internal verifier who are suitably qualified for the specific occupational area. Assessors and internal verifiers for competence-based units or qualifications will normally need to hold appropriate assessor or verifier qualifications, such as: ProQual Level 3 Certificate in Teaching, Training and Assessing Award in Assessing Competence in the Work Environment Award in Assessing Vocationally Related Achievement Certificate in Assessing Vocational Achievement Award in the Internal Quality Assurance of Assessment Processes and Practices Certificate in Leading the Internal Quality Assurance of Assessment Processes and Practices Support for Candidates Materials produced by centres to support candidates should: enable them to track their achievements as they progress through the learning outcomes and assessment criteria; provide information on where ProQual s policies and procedures can be viewed; provide a means of enabling Internal and External Quality Assurance staff to authenticate evidence 4

Assessment Candidates must demonstrate the level of knowledge and competence described in the unit. Assessment is the process of measuring a candidate s knowledge and understanding against the standards set in the qualification. Assessment guidance is included to assure consistency. Each candidate is required to produce evidence which demonstrates their achievement of all of the learning outcomes and assessment criteria for each unit. Evidence can include: - assignments/projects/reports - worksheets - portfolio of evidence - record of oral and/or written questioning - candidate test papers Learning outcomes set out what a candidate is expected to know, understand or be able to do. Assessment criteria specify the standard a candidate must meet to show the learning outcome has been achieved. Learning outcomes and assessment criteria for this qualification can be found from page 7 onwards. Internal Quality Assurance An internal quality assurance verifier confirms that assessment decisions made in centres are made by competent and qualified assessors, that they are the result of sound and fair assessment practice and that they are recorded accurately and appropriately. Adjustments to Assessment Adjustments to standard assessment arrangements are made on the individual needs of candidates. ProQual s Reasonable Adjustments Policy and Special Consideration Policy sets out the steps to follow when implementing reasonable adjustments and special considerations and the service that ProQual provides for some of these arrangements. Centres should contact ProQual for further information or queries about the contents of the policy. 5

Results Enquiries and Appeals All enquiries relating to assessment or other decisions should be dealt with by centres, with reference to ProQual s Enquiries and Appeals Procedures. Certification Candidates who demonstrate achievement of the qualification will be awarded a certificate giving the full qualification title - ProQual Claiming certificates Centres may claim certificates for candidates who have been registered with ProQual and who have successfully achieved the required number of credits for a qualification. All certificates will be issued to the centre for successful candidates. Replacement certificates If a replacement certificate is required a request must be made to ProQual in writing. Replacement certificates are labelled as such and are only provided when the claim has been authenticated. Refer to the Fee Schedule for details of charges for replacement certificates. 6

Learning Outcomes and Assessment Criteria M/507/9765 Understanding cyber security risks to business Learning Outcome - The learner will: 1. Understand the principles of Cyber Security within an organisation. 2. Understand the cyber threats to organisational and personal security. Assessment Criterion - The learner can: 1.1 Identify the principles of cyber security for a business environment. 1.2 Identify the purpose of cyber security awareness within a business environment. 2.1 Identify the following current and emerging cyber threat actors, to include: - State-sponsored (APT) - Individual (lone actor) - Hackers and Hacktivists - Cyber Terrorist - Cyber Criminal / Organised Crime - Organisational (business) - Insiders (intentional and unintentional) 2.2 Summarise current and emerging cyber threat motivations and drivers, to include: - Supporting National Objectives - Financial Reward - Improve Personal Technical Skills - Support Political/Ideological Goals - Supporting Business Objectives 2.3 Summarise current and emerging cyber threat tactics, techniques and procedures, to include: - Social Engineering - Malicious Software (Malware) - Network Attack / Intrusion - Local Physical Access - Supply Chain Corruption 2.4 Identify current and emerging cyber threat targets within an organisational and personal setting, to include: - Administrator (privileged access) - Social / Professional Network accounts - Financial Accounts - Customer Credentials - User / Employee Accounts - Storage Devices and Removable Media - Internet (websites, web apps) - Network (includes WiFi, routers etc) - Communication Information Systems (CIS) 7

Learning Outcome - The learner will: 3. Understand how to identify cyber risks specific to your organisational role or business area. 4. Understand the principles of access control and management. 5. Understand the importance of cyber incident response, disaster recovery and business continuity. 6. Understanding the safe usage of social and professional networks within an organisation. Assessment Criterion - The learner can: 3.1 Identify processes used to identify cyber risks to an organisation. 3.2 Explain the importance of remaining cyber security aware in business. 3.3 Summarise processes used to ensure organisational cyber security. 4.1 State the purpose of access control. 4.2 Define the principles of access control. 5.1 Define cyber incident response 5.2 Define disaster recovery 5.3 Define business continuity in a cyber context. 5.4 Identify effective approaches to cyber incident response. 6.1 Identify and explain risks associated with social media use in a business environment. 6.2 Identify examples of negative social and professional networking site use within a business environment. 6.3 Identify examples of positive social media use within a business environment. 6.4 Identify actions that can be taken to reduce the risk of exploitation via social and professional networking sites. Assessment There must be valid, authentic and sufficient for all the assessment criteria. However, one piece of evidence may be used to meet the requirements of more than one learning outcome or assessment criterion. 8

T/507/9766 Understanding the effective implementation of cyber security policies for business Learning Outcome - The learner will: 1. Understand the legislation associated with information assurance and cyber security within an organisation. 2. Understand how to provide guidance and obtain resources to ensure an effective cyber awareness strategy. 3. Know how to select and use appropriate security methods to safeguard systems and data. 4. Understand the importance of cyber security policy compliance at all levels of an organisation. 5. Understand how to effectively report and mitigate against further cyber attacks. 6. Understand how to ensure effective compliance with organisational acceptable usage policies within area of responsibility. Assessment Criterion - The learner can: 1.1 Identify the key legislation relevant to cyber security in a business environment. 1.2 Explain the importance of effective cyber security policies to ensure compliance with key legislation. 2.1 Identify appropriate sources of guidance for cyber security policy. 2.2 Identify sources of information to ensure currency with cyber security issues. 3.1 Summarise security methods that can be used to safeguard systems. 3.2 Explain specific security methods to protect against cyber threats. 4.1 Summarise the need for an organisational approach to cyber security. 4.2 Identify the key content of an effective cyber security policy. 4.3 Summarise the responsibilities for ensuring effective communication of cyber security information and policies within your area of responsibility. 4.3 Identify potential issues with noncompliance of cyber security policy at departmental and individual levels. 5.1 Summarise the processes that should be taken following a cyber incident. 6.1 Identify the key features of an acceptable usage policy to include: - Removable media policies - Home and mobile working 6.2 Explain how these policies are implemented effectively. Assessment There must be valid, authentic and sufficient for all the assessment criteria. However, one piece of evidence may be used to meet the requirements of more than one learning outcome or assessment criterion. 9

ProQual Awarding Body ProQual House Annie Med Lane South Cave HU15 2HG UK Tel: +44(0)1430 423822 www.proqualab.com enquiries@proqualab.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback