COIT20249 Assessment Details
Assessment item 3—Report
Due date: 11.55 pm AEST, Friday, Week 10 ASSESSMENT
Length: 2500 words +/- 250 words 3
Please refer to the Unit Profile to see how this assessment item relates to the Unit Learning Outcomes.
This assignment is designed to stimulate critical thinking outside of the classroom by requiring students to write a formal academic report. You will need to follow the ARE process described in chapters 2 and 3 of Your Business Degree 2 (prescribed textbook for COIT20249) to analyse the assessment task, research relevant information and evaluate the information you find. This information should be used to write an academic report in which you present your findings or outcomes and make recommendations for future practice. Professional writing and writing reports are described in chapters 4 and 5 of Your Business Degree 2. This assessment task will assess your skills in critical thinking, researching information, forming an opinion, academic writing, logical ordering of ideas and your ability to support your arguments with quotes from literature. These objectives will be measured by the ‘closeness of fit’ to meeting the assessment task, assessment requirements and marking criteria.
Please note that there is a wealth of material available on the Moodle Unit website that you should use to help you through the process of searching for and gathering relevant information, evaluating that information and writing your report.
General Assessment Criteria
Assessments provide the opportunity for students to demonstrate their knowledge and skills to achieve the required standard. To do this, assessment responses need to be both clear and easy to understand. If not, the University cannot determine that students have demonstrated their knowledge and skills. Assessments will, therefore, be marked accordingly including the potential for 0 (zero) marks where relevant.
The report must focus on the case study scenario given in the Assessment Task section. Any assessment items that do not address the case study scenario may be awarded 0 (zero) marks.
If you use Track Changes when writing your report you must ensure that the submitted document is the final and correct version of the document. That is, if your submitted report contains Track Changes or Comments or any other editing marks it may be awarded 0 (zero) marks. It is your responsibility to submit the final and correct version of your report.
The length of the report must be within the recommended range. If the report exceeds the maximum word count the marker will stop marking after 2750 words.
Moodle auto-submits draft files that are in Moodle at the originally set deadlines. Files that are autosubmitted will not be reverted to draft status except in extenuating circumstances (evidence required). It is your responsibility not to leave draft assessments in Moodle at the due date and time if the files are not ready to be submitted for marking. However, late submissions may attract penalties.
Students are required to write an academic report as per the format outlined in chapter 5 of the textbook. The report must follow the CQU APA referencing style. See the American Psychological Association (APA) abridged guide updated Term 2 2018 available from: https://www.cqu.edu.au/student-life/services-and-facilities/referencing/cquniversity-referencingguides. Please note that the prescribed textbook uses APA referencing guidelines. See also the Referencing Style subsection below.
The report is to be based on the following cybersecurity use case for office and home systems.
With the recent progress of computer networks, growth of interconnected devices through Internet, cloud computing, big data and web services, the number of cyber threat/attack has grown exponentially. Malware attack, phishing, man-in-the middle attack, denial-of-service are some of the common types of cyberattacks that hits businesses every day. Therefore, cybersecurity is an essential practice for the digital age to protect systems, networks, applications, data/information and hardware from cyberattacks or unauthorised access, and to ensure the integrity, confidentiality, and availability of information. The goal is to prevent the risks to individuals and organisations such as, damage or loss of sensitive data, stolen money, theft of intellectual property, theft of personal and financial data, disruption to business.
The major challenges to cybersecurity efforts are mobile connectivity, online payment, the ever increasing use of cloud and Internet of Things (IoT) devices, remote access and third-party outsourcing. These days almost every business has a website and externally exposed systems that make it easier for the attackers to enter the internal networks. Moreover, most smart devices (both at home and at work) are connected to the Internet which makes the system prone to attack. Hence, ensuring cybersecurity is an absolute must for every business and also for individuals. Common types of cybersecurity are application security, hardware security, network security, cloud security, Data Loss Prevention (DLP), Cryptography, Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), Identity and Access Management (IAM), and Antivirus/anti-malware.
You are a Security Consultant of a famous security consulting company that provides security consulting services to a wide range of business, individual, education institutes and companies. Recently one of your clients, ABC Technologies (ABCT) has contacted your organisation to prepare a document on Cybersecurity as it was the recent victim of several cyberattacks.
Here are the details of your client company:
ABCT is an Australian technology company whose line of business ranges from different types hightech products which include both software and hardware. ABCT has multiple offices nationwide, and two overseas offices. All computer services are provided by virtual private network (VPN), which is maintained in Canberra (the head office). ABCT allows their employees to work from home (using VPN connections) and also have a Bring Your Own Device (BYOD) policy for their employees who work onsite. Each location also provides free wireless LAN access to visitors/guests. ABCT currently have 10,000 regular customers. All their customer and product information are stored in the cloud. Because the company was the victim of several recent cyberattacks, they are concerned that company’s data might have been compromised and hackers might have gotten hold of customers’ information. They are also worried that they would lose the trust of their loyal customers, which could potentially result in a loss of revenue. So ABCT wants to improve their security system and security related policies. As a first step, they want your organisation to prepare a document on cybersecurity to train their staff on the basics of cybersecurity. As part of that, your team leader asked you to research and write a report that should cover the following tasks:
1. Explain what is cybersecurity and why it is important for ABCT?
2. Identify and explain at least 3 security vulnerabilities in ABCT’s system (you need to consider
ABCT’s case as presented above). You need to justify your answer with evidence from research.
3. Do some research, and find and list 5 different types of emerging threats (that might affect ABCT) and describe each of them in detail. In your discussion include what damage the attack might cause, who is responsible for these attacks and their attack techniques.
4. Do some research, analyse the information and give your recommendations (at least 3) how to protect home and office from cyberattack.
You have to complete this investigation and write a report for your team leader in the next three weeks. Since this is an initial investigation, moreover, some of the staff do not have IT background, the report does not require in-depth technical details.
Please note that you might need to make some assumptions about the organisation in order to write this report. These assumptions should match the information in the case study and not contradict with the objectives of the report. They should be incorporated in the introduction of your report when you describe the organisation and outline the problem to be solved. Relevant assumptions should be incorporated when addressing tasks 2 and 3 above. To avoid loss of marks, do not make assumptions that are not relevant or contradictory, or will not be used in your report discussion. Specifically your report should include the following (word count details are approximate guidelines):
1. Title page: unit code and name, assessment number, report title, assessment due date, word count (actual), student name, student number, CQU email address, campus lecturer/tutor, and unit coordinator. If applicable, add extension request ID and the new due date. Must be formatted to a standard required for a professional/business report. Check week 6 materials for example of a professionally formatted title page. Not included in the word count.
2. Executive summary: should include the purpose of the report, the problem including key issues considered and how they were investigated, your findings, and overview of your recommendations.
This part should be approximately three quarters of an A4 page but must not be longer than one (1) A4 page. Not included in the word count.
3. Table of Contents (ToC): should list the report topics using decimal notation. Need to include the main headings and subheadings with corresponding page numbers, using a format that makes the hierarchy of topics clear. Because you are including a ToC the report pages should be numbered in the footer as follows: title page has no page number; and main text to have Arabic numerals commencing at 1. Create the ToC using MS Word’s ToC auto-generator rather than manually typing out the ToC. Instructions can be found here https://support.office.com/en-gb/article/Createa-table-of-contents-or-update-a-table-of-contents-eb275189-b93e-4559-8dd9c279457bfd72#__create_a_table. Not included in the word count.
4. Introduction: provide a brief description of the organisation as given in the case scenario including any assumptions, a concise overview of the problem you have been asked to research, the main aims/purpose of the report, the objectives to be achieved by writing the report (include the tasks outlined in the case study) and how you investigated the problem. Provide an outline of the sections of the report. Should be approximately 250 words.
5. Body of the report (use appropriate headings in the body of the report.): Define key terms you will use in your report that are directly related to the problem and the technology considered. Then present your ideas on the topic and discuss the information you found in your research that was relevant to the report’s objectives. Provide an analysis of the information that you gathered. Ensure that you explore the tasks listed in the case study scenario.
Do NOT use generic words such as ‘Body, Body of the Report, Tasks’ as section headings.
Create meaningful headings and subheadings that reflect the topic and content of your report. Should be approximately 1850 words.
6. Conclusion: restate the purpose of the report and key issues investigated and the related findings based on your research and analysis. Explain the significance of your findings for addressing the problem stated in the case scenario and any limitations. State how your report has achieved its objectives and any future work to be considered. Should be approximately 250 words.
7. Recommendations: 3 to 5 recommendations required. Format according to the Report Writing Guidelines discussed in the Unit. Should be approximately 150 words.
8. Reference list. Not included in the word count.
9. Appendices if necessary. Not included in the word count.
Note: Additional information regarding this assignment may be placed on the Moodle Unit website as required. Check the Moodle Unit website at least once a week for further information relating to the report. Regular access to the Moodle Unit website is a requirement of this Unit.
Other Assessment Requirements
Your response should be structured as a report (chapter 5 of textbook), written in accordance with standard academic writing principles (chapter 4 of textbook). The report must be written using your own words with any in text citations clearly marked (see Referencing Style subsection below). You may discuss the assessment task with other students and the lecturing staff but you must WRITE the report YOURSELF in your own words.
You will need to conduct research to support your arguments using at least ten (10) but no more than 15 current references. Note that all the references you choose to use should be evaluated using the TripleR framework in the research stage of preparing your Report (do NOT include this evaluation in the Report). You must have a minimum of ten (10) current references in your reference list. At least six (6) of these references should be from refereed academic journals and conference proceedings. Other references could be sourced from books, industry websites and magazines. All sources should be current that is, within last 5 years. Minimum requirements relate to a Pass mark. You are encouraged to use more than the minimum requirements (up to 15 for a HD mark for References 2 criterion) for a better quality outcome to your report through improving the quality of your analysis.
The assignment should demonstrate a logical flow of discussion, and be free from typographical, spelling and grammatical errors. It should be prepared in MS-Word (or equivalent) using 12 point font (Times New Roman), 1.5 line spacing and margins of 2.54 cm. The final outcome must be clean and tidy.
It is highly recommended that you submit your assignment to the Academic Learning Centre (ALC) AT LEAST ONE WEEK before the due date. The ALC can check your report for correct structure, referencing, paragraphing and some language issues.
Your report must include in-text referencing and a correctly cited list of references ordered alphabetically by surname of first author, in accordance with the CQU APA referencing style of referencing as referred to in the American Psychological Association (APA) abridged guide updated Term 1 2018 available from: https://www.cqu.edu.au/student-life/services-and-facilities/referencing/cquniversity-referencingguides.
The report must be written using your own words with any in text citations clearly acknowledged using the CQU APA referencing style.
Helpful information on referencing techniques and styles can also be found on CQU’s referencing webpage:
Marks will be deducted for poor referencing, falsifying references, having less than ten (10) recent references, or for significant variations to the required word length.
Use quotation marks for direct quotes and you must include the author, date and page number(s) with the quote as per the referencing standards.
Students must write the Report themselves. You may be asked to prove that you have written the Report. You should keep evidence that you have written the Report yourself, for example, early drafts of your Report, and annotated copies of references and notes of using the Triple R technique to evaluate the references. Once the assessment is marked, the Unit Coordinator (or nominee) may request additional written information and/or an oral discussion to clarify the student’s understanding of the submitted work. Failure to comply and/or to demonstrate an understanding of the Report’s content could result in 0 marks for the Report.
ALL assignments will be checked for plagiarism (material copied from other students and/or material copied from other sources) using TurnItIn. If you are found to have plagiarised material or if you have used someone else’s words without appropriate referencing, you will be penalised for plagiarism which could result in zero (0) marks for the whole assignment. If you falsify references you will also be penalised. In some circumstances a more severe penalty may be imposed such as having a plagiarism incident raised.
The University’s Academic Misconduct Procedure is available in the policy portal https://www.cqu.edu.au/policy.
Useful information about academic integrity (avoiding plagiarism) can be found in the ALC resources on the Moodle Unit website and at:
https://www.cqu.edu.au/student-life/services-and-facilities/referencing/cquniversity-referencing-guides Guidelines with respect to self-referencing are available on the COIT20249 Moodle website.
The report has to be submitted using the COIT20249 Moodle Unit website on or before the due date. The submission link can be accessed through the Assessment block.
Before submitting your assignment, you should check it against the detailed assessment criteria in the following table to ensure that you have satisfactorily addressed all the criteria that will be used to mark your report.
It is your responsibility to ensure that your report is submitted for grading. At the due date of the assessment Moodle will auto-submit files that have been uploaded and left as drafts. However, any files uploaded after the due date must be manually submitted. This means that if you have been granted an extension or are uploading a late assessment (after the due date) you must complete the Moodle submission process. Further details on completing the submission process are available via the ‘Moodle Help for Students’ link in the Support block of your Moodle website.
If your report is left as a draft in Moodle after the due date it will accrue a late penalty. Late submissions attract a penalty of 5% per day of the total available mark for the individual assessment item. See the Assessment Policy and Procedure – Higher Education Coursework in the policy portal https://www.cqu.edu.au/policy.
Note: if your Report is auto-submitted the submission will not be reverted to draft unless there are extenuating circumstances. Any request is to go to the Unit Coordinator and must be supported by evidence.
This assessment is criterion referenced which means your work is assessed against the criteria in the marking rubric below.
Criteria Quality Total Mark
High Distinction Distinction Credit Pass Fail
Executive summary The executive summary contained:
- a brief description of the purpose of the report
- the definition of the problem, key issues explored, and how they were investigated
- a summary of what you found and what you concluded
- overview of your recommendations
- meets the recommended length as in given the specifications. The executive summary contained the proper sections and generally
well written but there is
some room for improvement. The executive summary had sections which were too brief. Did not include enough detail. The executive summary lacked clarity and has incomplete or missing sections. It did not clearly explain the problem, how it was investigated and your recommendations. Entire sections of the executive summary are missing. There is a lack of detail and the problem is not well explained.
Executive summary too short or long - did not meet the structural requirements in the specifications
Table of contents Lists the report topics using decimal notation. Includes meaningful main headings and subheadings with corresponding page numbers. Format makes the hierarchy of topics clear.
Auto generated using MS Word.
All pages are numbered in the report All the headings and subheadings are present in the table of contents with correct corresponding page number. But there is some room for improvement
Pages are numbered in the report. Some things missing from the table of contents.
Pages are numbered
in the report Includes the main headings only.
Pages are numbered in the report Table of contents missing or very poorly done.
Pages are not numbered in the report. 1
Introduction Set the scene for the report; gave some background information for the topic. Included a brief description of the organisation. The introduction contained the proper parts but there is room for improvement. The introduction had parts which were too brief.
Did not include enough detail. The introduction lacked clarity
Had a number of incomplete or missing parts. The introduction was missing or was a repeat of the executive summary.
It did not clearly introduce the report. 4
Stated the objectives of the investigation. Included the problem you are addressing and the key issues to be explored.
Explained the research method used to gather information.
Outlined the sections of the report. It did not clearly introduce the report. Introduction too short or long - did not meet the structural requirements in the specifications
Body of the Report: Selection and sequencing of subject material; including evidence. Selected exact amount of relevant material that supports argument with no contradictions.
Substantial, logical, & concrete development of ideas. Arguments were logical and clear.
All tasks in the specifications addressed.
Assumptions were made explicit. Key terms were defined.
Details were germane, original, and convincingly interpreted. Selected large amount of relevant material.
Offered solid development of ideas but less original reasoning.
Most of the tasks in the specifications were addressed.
Assumptions were not always recognised or made explicit. Key terms were defined.
Contained some appropriate details or examples. Selected adequate amount of relevant material.
Some development of ideas; not much original reasoning.
Some of the tasks in the specifications were addressed.
Assumptions are not always recognised or made explicit. Most Key terms were defined.
Contains some appropriate details or examples.
Contains some appropriate details or examples. Selected adequate amount of material not all of it relevant.
Not much development
of ideas. Very little original reasoning.
Only a few tasks were addressed.
Offered somewhat obvious support that may be too broad.
Some Key terms defined.
Details were too general, not interpreted, irrelevant to problem, or inappropriately repetitive. Selected too little material or material that is irrelevant.
No development of ideas or original reasoning.
Minimal addressing of tasks related to the report topic. No key topics defined.
Offered simplistic, undeveloped, or cryptic support for the ideas
Key information not supported by any evidence.
Inappropriate or off-topic generalisations, faulty assumptions, errors of fact. 12
Conclusion Problem restated clearly, main points and supporting arguments summarised.
Stated the significance of the findings and that the objectives of the report had been met.
No new material. The conclusion contained the proper parts but did not include enough detail.
No new material. The conclusion had parts which were too brief or missing. Did not include enough detail.
May have included some new material. The conclusion lacked clarity and had incomplete or missing parts.
It did not clearly conclude the report. The conclusion is missing or was a repeat of the executive summary.
Conclusion was difficult to understand or not linked to the overall purpose of the Report.
Included new material. 3
May have included some new material. Conclusion too short or long - did not meet the structural requirements in the specifications
Recommendations Suggested 3 specific actions to address the problem.
Actions were clearly based on the findings of the report. Suggested 3 specific actions relevant to the problem. Actions were based on the findings of
the report but there is some room for improvement Suggested 2-3 actions that were relevant to the problem.
Not all actions were based on the findings of the report.
Suggested at least 2 actions. Not all actions were relevant to the problem.
Not all actions were based on the findings of the report.
Recommendations missing or irrelevant to the problem and/or did not relate to the findings. 3
Organisation and structure of the Report:
- ideas/main points;
- grammar, punctuation and spelling; and - structure of sentences and paragraphs. Sequence of ideas was effective.
Excellent sentence structure. Well-constructed paragraphs; clear linkages between paragraphs.
Written expression was clear and correct; Grammar excellent; correct use of punctuation; minimal or no spelling errors; and evidence of thorough proof-reading.
Observed professional conventions of written English and report format. Sequence of ideas was good.
Good sentence structure. Linkages between paragraphs were mostly appropriate.
A few errors in grammar. Made occasional problematic word choices or syntax errors. A few spelling or punctuation errors.
Observed professional conventions of written English and report format; made a few minor or technical errors. Sequence of ideas did not always flow in a logical manner.
Some good sentence structure. Linkages between paragraphs could be improved. Some brief, undeveloped paragraphs.
Some distracting grammatical errors. Errors in punctuation and spelling. Little evidence of proofreading.
Needed to observe professional conventions of written English and report format; made few errors. May have had abrupt shifts and ineffective flow of ideas.
sentences; paragraphs not well linked.
Paragraph structure not well integrated; contained extraneous information.
Some major grammatical or proofreading errors. Language frequently weakened by inexact word choices. Spelling errors.
Needed to observe professional conventions of written English and report format; made repeated errors. Poorly worded sentences. No linkages between paragraphs.
Showed minimal effort or lack of comprehension of the assignment.
Numerous major grammatical and spelling errors which seriously detracted from understanding the writing; or incomprehensible.
Did not meet professional conventions of written English and report format.
Evidence of poor planning and/or no serious revision of writing. 3
- Title page;
- length and formatting. Title page contained all necessary information.
Correct length as specified.
Tidy final version - including no, track changes or unnecessary spacing or indentations, correct alignment of sections.
Formatted using 12 point font (Times New
Roman), 1.5 line spacing and margins of 2.54 cm. Title page contained all necessary information.
Correct length within +/100 - 200 words of the required length.
Mostly tidy final version Formatted correctly but missed one key requirement. Title page contained all necessary information.
Reasonable length within +/-200 - 300 words of the required length.
Tidy final version. Some minor
formatting errors. Some necessary information was missing from the title page.
Outside the 10% of required length - within +/-300 - 500 words of the required length.
Can improve the final version appearance. Major errors in formatting. Title page missing or missing necessary information.
Too short ( 2000 words or too long 3000 words).
Extensive improvements need to ensure good layout. Formatted incorrectly. 2
References (1): Evidence of research and analysis of the references based on
the ARE framework.
Selection and use of references based
on the Triple R
(relevant, reliable, and reputable). Thorough research indicated; clear well-thought out analysis clearly integrated into discussion.
Analysed and evaluated information in great depth.
Used references to support, extend, and inform, but not substitute writer’s own development of ideas.
Combined material from a variety of sources.
Did not overuse quotes.
All references conformed to the Triple R framework and recent (within the last 5 years). Research was generally thorough; analysis was generally well done; integrated into discussion.
Analysed and evaluated
information in considerable depth.
Used references to support, but not substitute writer’s own development of ideas.
Combined material from a variety of sources.
Did not overuse quotes.
Most references conformed to the Triple R framework and all were recent (within the last 5 years). Some evidence of research; basic analysis; some integration into discussion.
Analysed and evaluated information in reasonable depth, some description.
Used references to support, but not
substitute writer’s own development of ideas.
Combined material from a few sources.
Did not overuse quotes.
More than 50% of the references conformed to the Triple R framework and recent (within the last 5 years). Basic research; weaknesses evident in analysis.
Little evidence of analysis and evaluation of information; recounted and described.
Used relevant references but lacked in variety of references and/or the skilful combination of references.
Combined material from a few sources.
Quotations and paraphrases may be too long or not well integrated into the text.
Most of the references did NOT conform to the Triple R framework or were NOT recent (older than the last 5 years). Little or no evidence of research and analysis of information.
Neglected important references relevant to the problem.
Inappropriate or off-topic generalisations, faulty assumptions, errors of fact.
Overused quotations or paraphrasing to substitute writer’s own ideas.
Possibly used source material without acknowledgement.
Selected references did NOT conform to the Triple R framework - including much older than the last 5 years. 4
References (2): Intext citations and reference list.
• Current references – published within last 5 years; More than ten current references 14 - 15*. Approximately 60% or more of the references were academic references; All of sources are very well reputed.
Thorough referencing. Citations and reference list accurate and consistent with APA referencing style.
All citations/references listed.
*Note: Use of more than 15 references not penalised but no extra marks. Excessive number of references may impact on the original development of ideas and hence marks to other criteria. More than ten current (up to 13) references including more than six academic references. Not all of the sources are very well reputed.
All citations/references listed. At least ten current references including at least six academic sources.
Some errors in APA referencing style for citations and/or reference list.
citations/references listed. At least ten current references but less than six academic references.
Some errors with APA referencing style.
Incomplete reference list. References not cited properly in text. Less than ten current references.
None or only one or two academic references.
Inconsistent with APA referencing style.
Significant problems with citations and references. 4
Comprehension The content of the report was unable to be read and understood by the marker and another independent reviewer. Therefore, the assessment will receive a 0 mark without further feedback. 40