BSBXCS402 - Promote Workplace Cybersecurity Awareness And Best Practices Assessment 1 - Law Assignment Help

Assessment 1 - Knowledge Test

Assessment task description:

• This is the first (1) assessment task you must successfully complete to be deemed competent in this unit of competency.
• The Knowledge Test is comprised of six (6) written questions
• You must respond to all questions and submit them to your Trainer/Assessor.
• You must answer all questions to the required level, e.g. provide an answer within the required word limit, to be deemed satisfactory in this task
• You will receive your feedback within two (2) weeks, and you will be notified by your Trainer/Assessor when your results are available.

Instructions for answering the written questions:

• Complete a written assessment consisting of a series of questions.
• You will be required to answer all the questions correctly.
• Do not start answering questions without understanding what is required. Read the questions carefully and critically analyse them for a few seconds; this will help you to identify what information is needed in the answer.
• Your answers must demonstrate an understanding and application of the relevant concepts and critical thinking.
• Be concise, to the point and write answers within the word-limit given to each question. Do not provide irrelevant information. Remember, quantity is not quality.
• You must write your responses in your own words.
• Use non-discriminatory language. The language used should not devalue, demean, or exclude individuals or groups based on attributes such as gender, disability, culture, race, religion, sexual preference or age. Gender-inclusive language should be used.
• When you quote, paraphrase, summarise or copy information from other sources to write your answers or research your work, always acknowledge the source.

Purpose of the assessment:

This assessment task is designed to evaluate student’s knowledge essential to promote cyber security in a work area in a range of contexts and industry settings & knowledge regarding the following:

• Knowledge of legislative requirements relating to cyber security context of performance evidence, including:
  • data protection
  • implications of Notifiable Data Breach legislation on an organisation and other associated Australian privacy laws
  • established international legislation
• Knowledge of organisational policies and procedures relating to:
  • securely storing, sharing and managing information
  • encryption, and protocols for its uses
  • data classification and management
  • media/document labelling
  • data governance
  • acceptable use
  • bring your own device
• Knowledge of Australian government sources of information on current threats
• risks associated with workplace cyber security
• Knowledge of strategies and techniques for promoting workplace cyber security
• Knowledge of techniques for:
  • implementing and promoting workplace cyber security awareness
  • facilitating training that promotes cyber security awareness, including the use of simulated activities.

Task instructions:

• This is an individual assessment.
• To ensure your responses are satisfactory, consult a range of learning resources and other information such as handouts, textbooks, learner resources etc.
• To be assessed as Satisfactory in this assessment task, all questions must be answered

Provide your response to each question in the box below.

1.1 Answer the following questions:

1. Discuss the purpose of The Privacy Amendment (Notifiable Data Breaches) Act 2017 using 30-60 words. 

1. Explain personally identifiable information (PII) using 30-60 words. 

1. Identify three (3) pieces of workplace-related information that can be constituted as personally identifiable information (PII). 

1. Explain using 30-60 words why securing Personally Identifiable Information (PII) is a critical data protection task? 

1. What are the four (4) specifications related to personally identifiable information (PII). 
2. When an organisation or agency must notify affected individuals and the Office of the Australian Information Commissioner (OAIC) according to Notifiable Data Breach legislation and Privacy Act 1988? Answer using 20-40 words. 

1. Identify five (5) examples of serious harm under the Notifiable Data Breaches scheme? 

1. What are the seven (7) principles of the General Data Protection Regulation (GDPR)? 

1.2 Answer the following questions:

1. Why is it important to store, share and manage information securely? Answer using 30-60 words. 

1. What are the uses of encryption? Answer using 20-40 words. 

1. What is the difference between WEP and WPA encryption protocols? Answer using 20-40 words.
2. Explain data classification using 20-40 words. 

1. What are media labelling and document labelling requirements? Answer using 20-40 words. 

1. Explain data governance using 30-60 words. 

1. Discuss acceptable use policy (AUP) using 30-60 words. 

1. What are the three (3) disadvantages of bring-your-own-device (BYOD) processes at a workplace? 

1.3 Answer the following questions:

1. Identify and explain the purpose of an Australian Government organisation working in cyber security using 30-60 words. 
2. What is the importance of preparing and publishing a threat report on an ongoing basis? Answer using 30-60 words.

1.4 Answer the following questions:

1. How can cyber security be instilled in workplace culture? Answer using 20-40 words.
2. Identify five (5) risks associated with workplace cyber security awareness and best practices.

1.5 Answer the following questions:

1. How should you promote cyber security in the workplace? Discuss the strategies and techniques to promote cyber security in the workplace using 30-60 words. 
2. What aspects should be considered when promoting cyber security at a workplace? Identify five (5) aspects.

1.6 Answer the following questions:

1. How do you implement a workplace cyber security awareness program? Explain using 30-60 words. 
2. What is the purpose of cyber security awareness training using simulated activities? Explain using 30-60 words.