This unit provides the knowledge and skills required to use a series of tools to test the vulnerabilities of the security infrastructure for an organisation. The unit includes the compiling of information on the existing security infrastructure design, evaluating and selecting testing tools and preforming vulnerability scanning and penetration testing. It also includes developing a report which assesses the weaknesses and includes mitigation strategies that can be implemented to 
'harden' the organisation's cyber security infrastructure.

Unit details

Study level:
Vocational and further education (TAFE)
Unit code:


Assessment tasks will be designed to reinforce and extend knowledge and skill competence within set and controlled parameters in accordance with each unit's learning outcomes and performance criteria requirements, including the setting of work based practical application tasks designed to provide evidence of competence outcomes, within periodic and scheduled timelines. Students will be expected to demonstrate the following required skills: - Articulating relevant issues encountered in the work environment - Reading and accurately interpreting documents and reports - Operating a personal computer - Interpreting network diagrams - Assembling, participating in and coordinating a work team - Problem solving within a team environment - Evaluating the performance of a work team - Contributing to the process of enhancing team performance - Gathering, testing and allocating project resources - Penetration testing concepts and procedures required for a cyber security infrastructure - Installing and using software packages - Using basic Linux commands - Interpret and writing scripts - Preparing technical documentation - Making presentation to clients - Interpreting network vulnerability scanning tool results - Managing network vulnerability scanning tool results - Using PEN testing tools to test the security infrastructure - Identify vulnerabilities - Reporting vulnerabilities to appropriate personnel Students will also be expected to demonstrate the following knowledge: - Physical and virtual cyber security infrastructure - Network security penetration testing - Types of testing - Dangers of testing - Project communication and time management - Network vulnerability scanning tools - Network penetration testing - Vulnerabilities of virtualised systems (shared hosting)

Where to next?

VU takes care to ensure the accuracy of this unit information, but reserves the right to change or withdraw courses offered at any time. Please check that unit information is current with the Student Contact Centre.