|
Subject Code:
|
TECH2400
|
|
Subject Name:
|
Introduction to Cyber Security
|
|
Assessment Title:
|
Proactive Security Measures
|
|
Assessment Type:
|
Simulation and Report
|
|
Assessment Length:
|
500
|
Words (+/-10%)
|
|
Weighting:
|
40 %
|
|
Total Marks:
|
40
|
|
Submission:
|
MyKBS
|
|
Due Date:
|
Part A:
Week 12
Part B:
Week 13
|
Your Task
Demonstrate your understanding of key cyber security concepts aligned with learning outcomes LO2, LO3, and LO4. You will utilise open-source cyber security tools to assist an organisation with the Preparation stage of the Incident Response Lifecycle.
Additionally, this task allows you to use generative AI tools to assist in the process.
|
LO2:
|
Identify vulnerabilities and threats pertaining to the IT infrastructure of organisations.
|
|
LO3:
|
Recommend risk mitigation strategies to address cyber security vulnerabilities and threats.
|
|
LO4:
|
Analyse privacy, legal, ethical and security issues and solutions related to the IT infrastructure and use of technologies in organisations.
|
Assessment Description
This assessment is designed to simulate industry practices for using open-source cyber security tools for network security and threat detection. You will apply hands-on skills using the Elasticsearch, Logstash, Kibana (ELK) Stack, as well as Snort, which functions as both an intrusion detection system and intrusion prevention system (IDS/IPS).
This assessment is completed in two parts:
Part A: Tool configuration
• Conduction during your Week 12 workshop.
• You will configure security tools to meet four (4) specific objectives within 2.5 hours. These objectives would have been covered in Workshops 9 and 10.
• At the end of the session, you will present your configurations to your learning facilitator for verification.
Part B: Documentation
• You will submit a final report via myKBS by Week 13.
• The report must include screenshots of configurations and brief explanations detailing how each objective was achieved.
Assessment Instructions
1) Preparation
a. Ensure you have your laptop with VirtualBox installed and a Linux Mint set up with ELK Stack and Snort. You should already have these tools from Workshops 9 and 10.
b. Review Workshops 9 and 10 to understand:
i. The purpose of each tool
ii. How to configure them to meet security objectives
2) Configuration – (Part A: In-Class Assessment)
a. Arrive early to your Week 12 class to settle in and receive final instructions. Ensure your laptop is fully charged.
b. You will be assigned four (4) objectives to configure.
c. For each objective:
i. Identify the relevant tool.
ii. Configure the tool to meet the objective.
d. Once you have completed all four objectives, present your configurations to your learning facilitator.
e. After presenting, take clear screenshots of your work. Each screenshot must also capture:
i. The time and date (visible in your taskbar)
ii. A text editor displaying your name and student number
3) Documentation – (Part B: myKBS Submission)
a. Compile your screenshots into a Microsoft Word file.
b. Separate the screenshots per objective and then provide a brief description of the configuration and what the outcome would be (i.e. How does the configuration meet the objective?).
c. Submit your document via myKBS.
Important Study Information
Academic Integrity and Conduct Policy
KBS values academic integrity. All students must understand the meaning and consequences of cheating, plagiarism and other academic offences under the Academic Integrity and Conduct Policy.
Please read the policy to learn the answers to these questions:
• What is academic integrity and misconduct?
• What are the penalties for academic misconduct?
• How can I appeal my grade?
Late submission of assignments (within the Assessment Policy)
Length Limits for Assessments
Penalties may be applied for assessment submissions that exceed prescribed limits.
Study Assistance
Students may seek study assistance from their local Academic Learning Advisor or refer to the resources on the MyKBS Academic Success Centre page. Further details can be accessed at
Generative AI Traffic Lights
Please see the level of Generative AI that this assessment has been designed to accept:
|
Traffic
Light
|
Amount of Generative Artificial
Intelligence (GenerativeAI) usage
|
Evidence Required
|
This
assessment (✓)
|
|
Level 1
|
Prohibited:
No GenerativeAI allowed
This assessment showcases your individual knowledge, skills and/or personal experiences in the absence of Generative AI support.
|
The use of generative AI is prohibited for this assessment and may potentially result in penalties for academic misconduct, including but not limited to a mark of zero for the assessment.
|
|
|
Level 2
|
Optional:
You may use GenerativeAI for
research and content generation that is appropriately referenced.
See assessment instructions for details
This assessment allows you to engage with Generative AI as a means of
expanding your understanding,
creativity, and idea generation in the research phase of your assessment and to produce content that enhances your assessment. I.e., images. You do not have to use it.
|
The use of GenAI is optional for this assessment.
Your collaboration with GenerativeAI must be clearly referenced just as you would reference any other resource type used. Click on the link below to learn how to reference GenerativeAI.
https://library.kaplan.edu.au/referencing-other sources/referencing-other-sources-generative-ai
In addition, you must include an appendix that documents your GenerativeAI collaboration including all prompts and responses used for the assessment.
Unapproved use of generative AI as per assessment details during the content generation parts of your assessment may potentially result in penalties for academic misconduct, including but not limited to a mark of zero for the assessment. Ensure you follow the specific assessment instructions in the section above.
|
✓
|
|
Level 3
|
Compulsory:
You must use GenerativeAI to
complete your assessment
See assessment instruction for
details
This assessment fully integrates
Generative AI, allowing you to harness the technology’s full potential in
collaboration with your own expertise.
Always check your assessment
instructions carefully as there may still be limitations on what constitutes
acceptable use, and these may be specific to each assessment.
|
You will be taught how to use generative AI and assessed on its use.
Your collaboration with GenerativeAI must be clearly referenced just as you would reference any other resource type used. Click on the link below to learn how to reference GenerativeAI.
https://library.kaplan.edu.au/referencing-other sources/referencing-other-sources-generative-ai
In addition, you must include an appendix that documents your GenerativeAI collaboration including all prompts and responses used for the assessment.
Unapproved use of generative AI as per assessment details during the content generation parts of your assessment may potentially result in penalties for academic misconduct, including but not limited to a mark of zero for the assessment. Ensure you follow the specific assessment instructions in the section above.
|
|
Assessment Marking Guide
|
HD (High
Marking Criteria
F (Fail)
P (Pass)
C (Credit)
D (Distinction)
Distinction)
_____ 40 marks
0 – 49%
50 – 64%
65 – 74%
75 – 84%
85 – 100%
|
|
Part A: In-class configuration
|
|
Configuration
Accuracy
10 marks
|
Configurations
were not
attempted.
|
Configurations are mostly incorrect or incomplete.
|
Basic
configurations
applied but may not fully meet
objectives.
|
Mostly correct
configurations with minor errors.
|
Configurations are correct and mostly align with
objectives.
|
Fully correct
configurations that effectively meet all objectives.
|
|
Completion of
Objectives
10 marks
|
No objectives were met.
|
Only 1 objective fully completed or at least 2 but both with minimal
functionality.
|
At least 2
objectives are
completed
successfully.
|
At least 3
objectives are
completed
successfully.
|
All 4 objectives
completed with
minor refinements needed.
|
All 4 objectives fully completed with
strong execution.
|
|
HD (High
Marking Criteria
F (Fail)
P (Pass)
C (Credit)
D (Distinction)
Distinction)
_____ 40 marks
0 – 49%
50 – 64%
65 – 74%
75 – 84%
85 – 100%
|
|
Part B: Documentation
|
|
Discussion of
Configurations
10 marks
|
No discussions
are provided.
|
Missing
discussions or
discussions lack relevant.
|
Discussions
provide minimal insight into
configurations.
|
Discussions are mostly accurate but lack depth.
|
Discussions
clearly explain
purpose and
outcomes with
strong technical accuracy.
|
Discussions are
concise, technically sound, and provide clear explanations of purpose and
outcomes.
|
|
Screenshot
Quality
5 marks
|
No screenshots are provided, or screenshots were not taken during the in-class
assessment.
|
Screenshots are unclear, missing key details (e.g., date, time, student
ID) and do not
demonstrate the configurations
effectively.
|
Screenshots are mostly clear and have all the
required details but do not
demonstrate the configurations
effectively.
|
Screenshots are clear, include all required details, and demonstrate
most of the
configurations
effectively.
|
Screenshots are clear, include all required details, and demonstrate
all the
configurations
effectively, with only minor
formatting or
clarity issues.
|
All screenshots are clear, contain the required details,
and demonstrate the configurations effectively.
|
|
Structure &
Clarity
5 marks
|
No discernible
structure,
disorganised,
inconsistent
formatting, and
lack of logical flow.
|
Disorganised
document with
unclear formatting.
|
Document has
some structure but is difficult to follow.
|
Well-structured
with clear sections but minor
formatting
inconsistencies.
|
Well-organised, professional
formatting with
minimal errors.
|
Professionally
structured, clear, and well-formatted with no errors.
|
Leave A Comment