Assessment Details

Qualification Code/Title ICT60220 Advance diploma of information technology

Assessment Type Assessment 1 Time allowed 5 weeks

Due Date 19, March 2023 Location parramatta Term / Year 1st/2023

Unit of Competency
National Code/Title ICTCYS604 Implement best practices for identity management

Student Details
Student Name Tilak Adhikari Student ID Mcs2001271

Student Declaration: I declare that the work submitted is my

own and has not been copied or plagiarised from any person
or source.
Signature: ___________
____
Date: _____/_/_________
Assessor Details
Assessor’s Name Zaman sahiduz
RESULTS (Please
☐SATISFACTORY ☐NOT SATISFACTORY
Circle)
Feedback to student:

*If Student is Not Satisfactory Assessor Declaration: I declare that I have

Reassessment Required ☐ Yes ☐ No conducted a fair, valid, reliable and flexible assessment
Comment: with this student, and I have provided appropriate
feedback.

Signature: ________________________
Date: ______/_______/___________

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 1 of 12
January 2023 January 2024 1.0
Instructions to the Candidates
 This assessment is to be completed according to the instructions given below in this document.
 Should you not answer the tasks correctly, you will be given feedback on the results and gaps in knowledge. You will be
entitled to one (1) resubmit in showing your competence with this unit.
 If you are not sure about any aspect of this assessment, please ask for clarification from your assessor.
 Please refer to the College re-submission and re-sit policy for more information.
 If you have questions and other concerns that may affect your performance in the Assessment, please inform the
assessor immediately.
 Please read the Tasks carefully then complete all Tasks.
 To be deemed competent for this unit you must achieve a satisfactory result with tasks of this Assessment along with a
satisfactory result for another Assessment.
 This is an Open book assessment which you will do in your own time but complete in the time designated by your
assessor. Remember, that it must be your own work and if you use other sources then you must reference these
appropriately
 Submitted document must follow the given criteria. Font must be Times New Roman, Font size need to be 12, line
spacing has to be Single line and Footer of submitted document must include Student ID, Student Name and Page
Number. Document must be printed double sided.
 This is Individual Assessments. Once you have completed the assessment, please provide the Hard copy of the
Assessments to your Trainer/ Assessor.
 Plagiarism is copying someone else’s work and submitting it as your own. Any Plagiarism will result in a mark of Not
Satisfactory. SCCM uses Safe Assign Plagiarism Checker to check the originality of the student assessment. Student
must be aware of and understand the SCCM’s policy on plagiarism and certify that this assignment is their own work,
except where indicated by referencing, and that student have followed the good academic practices noted above.

BSBLDR511 Develop and use emotional intelligence | 2

 CONTENTS
Introduction 4
Assessment Task 1: Knowledge Questions 5
Assessment Task 1: Checklist 8

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page of
January 2023 January 2024 1.0
 Introduction
The assessment tasks for ICTCYS604 Implement best practices for identity management are
outlined in the assessment plan below. These tasks have been designed to help you demonstrate
the skills and knowledge that you have learnt during your course.
Please ensure that you read the instructions provided with these tasks carefully. You should also
follow the advice provided in the IT Works Student User Guide. The Student User Guide provides
important information for you relating to completing assessment successfully.

Assessment for this unit

ICTCYS604 Implement best practices for identity management describes the performance
outcomes, skills and knowledge required identify, confirm and implement best practices for identity
management in the cyber environment to minimise threats, risks and cybercrime attacks.
For you to be assessed as competent, you must successfully complete two assessment tasks:

 Assessment Task 1: Knowledge questions – You must answer all questions correctly.

 Assessment Task 2: Project – You must work through a range of activities and complete a
project portfolio.

Re-submission opportunities
 You will be provided feedback on your performance by the Assessor. The feedback will
indicate if you have satisfactorily addressed the requirements of each part of this task.

 If any parts of the task are not satisfactorily completed, the assessor will explain why, and
provide you written feedback along with guidance on what you must undertake to demonstrate
satisfactory performance. Re-assessment attempt(s) will be arranged at a later time and date.

 You have the right to appeal the outcome of assessment decisions if you feel that you have
been dealt with unfairly or have other appropriate grounds for an appeal.

 You are encouraged to consult with the assessor prior to attempting this task if you do not
understand any part of this task or if you have any learning issues or needs that may hinder
you when attempting any part of the assessment.

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 4 of 12
January 2023 January 2024 1.0
 Written answer question guidance
The following written questions use a range of “instructional words” such as “identify” or “explain”,
which tell you how you should answer the question. Use the definitions below to assist you to
provide the type of response expected.
Note that the following guidance is the minimum level of response required.

Analyse: when a question asks you to analyse something, you should do so in detail, and
identify important points and key features. Generally, you are expected to write a response one
or two paragraphs long.
Compare: when a question asks you to compare something, you will need to show how two or
more things are similar, ensuring that you also indicate the relevance of the consequences.
Generally, you are expected to write a response one or two paragraphs long.
Contrast: when a question asks you to contrast something, you will need to show how two or
more things are different, ensuring you indicate the relevance or the consequences. Generally,
you are expected to write a response one or two paragraphs long.
Describe: when a question asks you to describe something, you should state the most
noticeable qualities or features. Generally, you are expected to write a response two or three
sentences long.
Discuss: when a question asks you to discuss something, you are required to point out
important issues or features and express some form of critical judgement. Generally, you are
expected to write a response one or two paragraphs long.
Evaluate: when a question asks you to evaluate something, you should put forward arguments
for and against something. Generally, you are expected to write a response one or two
paragraphs long.
Examine: when a question asks you to examine something, this is similar to “analyse”, where
you should provide a detailed response with key points and features and provide critical
analysis. Generally, you are expected to write a response one or two paragraphs long.
Explain: when a question asks you to explain something, you should make clear how or why
something happened or the way it is. Generally, you are expected to write a response two or
three sentences long.
Identify: when a question asks you to identify something, this means that you are asked to
briefly describe the required information. Generally, you are expected to write a response two or
three sentences long.
List: when a question asks you to list something, this means that you are asked to briefly state
information in a list format.
Outline: when a question asks you to outline something, this means giving only the main points,
Generally, you are expected to write a response a few sentences long.
Summarise: when a question asks you to summarise something, this means (like “outline”) only
giving the main points. Generally, you are expected to write a response a few sentences long.

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 5 of 12
January 2023 January 2024 1.0
 Assessment Task 1: Knowledge Questions

Information for students

Knowledge questions are designed to help you demonstrate the knowledge which you have
acquired during the learning phase of this unit. Ensure that you:

 review the advice to students regarding answering knowledge questions in the IT Works
Student User Guide

 comply with the due date for assessment which your assessor will provide

 adhere with your RTO’s submission guidelines

 answer all questions completely and correctly

 submit work which is original and, where necessary, properly referenced

 submit a completed cover sheet with your work

 avoid sharing your answers with other students.

i
Assessment information
Information about how you should complete this assessment can be found in Appendix
A of the IT Works Student User Guide. Refer to the appendix for information on:

 where this task should be completed

 the maximum time allowed for completing this assessment task

 whether or not this task is open-book.

Note: You must complete and submit an assessment cover sheet with your work. A
template is provided in Appendix C of the Student User Guide. However, if your RTO
has provided you with an assessment cover sheet, please ensure that you use that.

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 6 of 12
January 2023 January 2024 1.0
 Questions
Provide answers to all of the questions below:

1. Provide a description of the following identify management methodologies..

Identification the process of identifying a user, usually by asking them to provide

their username or another kind of identification.

Authentication the process of confirming a user's identity, usually by requesting a

password or other form of identification.

Outcome ☐ Satisfactory ☐ Not Satisfactory

Comment

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 7 of 12
January 2023 January 2024 1.0
 2. Complete the following table by describe two identity management best practices.

Identity management best practice Description

Training and education Employee education and training

programmes that emphasise the value of
strong passwords, how to spot phishing
scams, and other security-related subjects
can help lower the likelihood of identity
management-related security events.
Multifactor authentication The security of the authentication process
can be greatly increased and help prevent
unauthorised access to systems and data by
implementing multiple forms of
authentication, such as a combination of
something the user knows (for example, a
password), something they have (for
example, a smart card), and something they
are (for example, biometric data).

Outcome ☐ Satisfactory ☐ Not Satisfactory

Comment

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 8 of 12
January 2023 January 2024 1.0
 3. Complete the following table by identifying and describing two legislations relevant to identify
management.

Legislation Description

General Data Protection Regulation (GDPR) a European Union (EU) regulation that
controls how people' personal data is
processed and protected. The GDPR grants
individuals the right to access, alter, and
delete their personal data and requires
enterprises to put in place the necessary
organisational and technical safeguards to
protect it.

Health Insurance Portability and Australia law regulating the privacy and
Accountability Act (HIPAA) security of protected health information
(PHI). HIPAA requires healthcare providers
to maintain appropriate administrative,
physical, and technical safeguards to ensure
the confidentiality, integrity, and availability
of PHI. This includes measures such as
access controls, data encryption and regular
security checks

Outcome ☐ Satisfactory ☐ Not Satisfactory

Comment

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 9 of 12
January 2023 January 2024 1.0
 4. Complete the following table by identifying the relevance of each of the procedures below to identity
management.

Procedure Relevance to identify management

Documentation processes A documented process is essential for identity

management because it provides a clear and concise
understanding of the identity management system
(including its components, processes, and
procedures). This document can be used to ensure
that systems are configured and maintained in a
secure and consistent manner.

Secure network infrastructure A secure network infrastructure is essential for identity

management as it forms the basis for secure
communication and data exchange within the identity
management system. This includes secure data
transfer, secure storage of data and authentication
data, and protection of sensitive data from
unauthorized access or manipulation.

Information security strategies An information security strategy plays an important role

in identity management as it provides a framework for
protecting data and systems from unauthorized
access, theft and misuse. These strategies include, but
are not limited to security policies, security controls,
and security incident response plans.

Baselines and metrics Baselines and metrics are important for identity
management because they provide a way to measure
the performance and effectiveness of your identity
management system. This includes measuring key
performance indicators such as: B. Time taken to
process authentication requests and the number of
security incidents related to identity management.

Testing methodologies Testing methods are essential to identity management

because they provide a way to validate the
functionality and security of your identity management
system. This includes vulnerability analysis,
penetration testing, and security audits. These tests
help identify potential vulnerabilities in the system and
ensure that it is functioning as intended.

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 10 of 12
January 2023 January 2024 1.0
 Outcome ☐ Satisfactory ☐ Not Satisfactory
Comment

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 11 of 12
January 2023 January 2024 1.0
 Assessment Task 1: Checklist
Student’s name: Tilak Adhikari

Did the student provide a Completed

sufficient and clear answer successfully? Comments
that addresses the
suggested answer for the Yes No
following?

Question 1

Question 2

Question 3

Question 4

Task outcome:  Satisfactory  Not satisfactory

Assessor signature:

Assessor name: Zaman sahiduz

Date:

© Sydney City College of Management Pty Ltd RTO: 45203 CRICOS: 03620C Date Revision date Version
File Name: ICTCYS604 Assessment Task Page 12 of 12
January 2023 January 2024 1.0