This unit provides the knowledge and skills required to ensure and maintain the security of an organisation's website by utilizing the outcomes of the Open Web Application Security Project (OWASP). Current penetration testing tools are also utilised to determine the vulnerabilities of a web site. Vulnerabilities are assessed and reported to appropriate personnel to minimize risk.

Unit details

Study level:
Vocational and further education (TAFE)
Unit code:
VU21997

Assessment

Assessment tasks will be designed to reinforce and extend knowledge and skill competence within set and controlled parameters in accordance with each unit's learning outcomes and performance criteria requirements, including the setting of work based practical application tasks designed to provide evidence of competence outcomes, within periodic and scheduled timelines. Students will be expected to demonstrate the following required skills: - communicate and contribute as a member of a team; - solve problems related to an organisation's website security vulnerabilities; - ability to read and comprehend technical procedures and documents; - use a laptop or a workstation; - install and interpret software test packages; - plan and present proposed solutions to a client, and; - contribute to writing reports.Students will also be expected to demonstrate the following knowledge: - website development functionality and operation; - website vulnerabilities; - basic level penetration testing of the website for an enterprise; - website servers; - server scripting; - firewall features and operation; - existing frameworks of reported software vulnerabilities; - HTTP structure; - testing tools for website vulnerabilities (penetration testing (PEN testing)), and; - Open Web Application Security Project (OWASP) top 10 Web based vulnerabilities.

Where to next?

As part of a course

This unit is studied as part of the following courses. Refer to the course page for information on how to apply for the course.

VU takes care to ensure the accuracy of this unit information, but reserves the right to change or withdraw courses offered at any time. Please check that unit information is current with the Student Contact Centre.