Professional Documents
Culture Documents
SECURITY ANALYST
SECTOR: IT-ITeS
SUB-SECTOR: IT Services
OCCUPATION: Information Security
REFERENCE ID: SSC/Q0901,version 1.0
NSQF LEVEL: 7
1
2
Table of Contents
Curriculum/Syllabus 3
Information Security Fundamentals 5
Incident Management 5
Security Device Management 6
Conducting Security Audits 6
Audit Preparation 7
Self and work Management 7
Team Work and Communication 7
Managing Health and Safety 8
Data and Information Management 8
Learning and Self Development 9
Unique Equipment Required: 9
3
Security Analyst
CURRICULUM / SYLLABUS
This program is aimed at training candidates for the job of Security Analyst in the IT-ITeS Sector/Industry and aims at
building the following key competencies in the learner.
Training Outcomes After completing this programme, participants will be able to:
Contribute to managing information security
Co-ordinate responses to information security incidents
Install and configure information security devices
Contribute to information security audits
Support teams to prepare for and undergo information security audits
Manage their work to meet requirements
Work effectively with colleagues
Maintain a healthy, safe and secure working environment
Provide data/information in standard formats
Develop their knowledge, skills and competence
4
The Course encompasses all ten National Occupational Standards (NOS) of ‘’Security Analyst’’ Qualification Pack issued by ‘’IT-
ITeS Sector Skills Council NASSCOM’’.
5
Prepare accurate preliminary reports on
information security incidents using standard
templates and tools
Submit preliminary reports promptly to
appropriate people for action
Update the status of information security incidents
following investigation/action using standard
templates and tools
Obtain advice and guidance on co-ordinating
information security incidents from appropriate
people, where required
Update their organization’s knowledge base
promptly and accurately with information security
incidents and how they were managed
Comply with their organization’s policies,
standards, procedures, guidelines and service level
agreements (SLAs) when co-ordinating responses
to information security incidents
3 Security Device Candidates will be able to:
Management Identify the information security devices they are
required to install/ configure/troubleshoot and
source relevant instructions and guidelines
Identify any issues with instructions and guidelines
Theory Duration for installing/configuring information security
(hh:mm) devices and clarify these with appropriate people
12:00 Liaise with stakeholders clearly and promptly
regarding the installation/ configuration of
Practical Duration information security devices
(hh:mm) Install/configure information security devices as per
38:00 instructions and guidelines
Test installed/configured information security
Corresponding NOS devices, following instructions and guidelines
Code Resolve problems with security devices, following
SSC/N9003 instructions and guidelines
Obtain advice and guidance on installing/
configuring/ testing/ troubleshooting information
security devices from appropriate people, where
required
Record the
installation/configuration/testing/troubleshooting
of information security devices promptly using
standard templates and tools
Provide reports for troubleshooting, configurations
and deployment using standard templates and
tools
Comply with organization’s policies, standards,
procedures, guidelines and service level
agreements (SLAs) when
installing/configuring/troubleshooting information
security devices
4 Conducting Security Candidates will be able to:
Audits Establish the nature and scope of information
security audits and their role and responsibilities
within them
Identify the procedures/guidelines/checklists for
Theory Duration the audit tasks they are required to carry out
(hh:mm) Identify any issues with
6:00 procedures/guidelines/checklists for carrying out
6
audit tasks and clarify these with appropriate
Practical Duration people
(hh:mm) Collate information, evidence and artefacts when
19:00 carrying out audits
Carry out required audit tasks using standard tools
Corresponding NOS and following established procedures/guidelines/
Code checklists
SSC/N9004 Refer to appropriate people where audit tasks are
beyond their levels of knowledge, skills and
competence
Record and document audit tasks and audit results
using standard tools and templates
Review results of audit tasks with appropriate
people and incorporate their inputs
Comply with their organization’s policies,
standards, procedures, guidelines and checklists
when contributing to information security audits
5 Audit Preparation Candidates will be able to:
Establish the nature and scope of information
security audits and their role and responsibilities in
preparing for them
Identify the procedures/guidelines/checklists that
will be used for information security audits
Identify the requirements of information security
Theory Duration audits and prepare for audits in advance
(hh:mm) Liaise with appropriate people to gather
6:00 data/information required for information security
audits
Practical Duration Organize data/information required for
(hh:mm) information security audits using standard
19:00 templates and tools
Provide immediate support to auditors to carry out
Corresponding NOS audit tasks
Code Participate in audit reviews, as required
SSC/N9005 Comply with the organisation’s policies, standards,
procedures, guidelines and checklists when
supporting teams to prepare for and undergo
information security audits
6 Self and work Candidates will be able to: Refer to Unique Equipment
Management Establish and agree their work requirements with Required Section
appropriate people
Keep their immediate work area clean and tidy
utilize their time effectively
Theory Duration Use resources correctly and efficiently
(hh:mm) Treat confidential information correctly
12:00 Work in line with organization’s policies and
procedures
Practical Duration Work within the limits of their job role
(hh:mm) Obtain guidance from appropriate people, where
38:00 necessary
Ensure their work meets the agreed requirements
Corresponding NOS
Code
SSC/N9001
7 Team Work and Candidates will be able to: Refer to Unique Equipment
Communication Required Section
7
Communicate with colleagues clearly, concisely and
accurately
Theory Duration Work with colleagues to integrate their work
(hh:mm) effectively with them
12:00 Pass on essential information to colleagues in line
with organizational requirements
Practical Duration Work in ways that show respect for colleagues
(hh:mm) carry out commitments they have made to
38:00 colleagues
Let colleagues know in good time if they cannot
Corresponding NOS carry out their commitments, explaining the reasons
Code Identify any problems they have working with
SSC/N9002 colleagues and take the initiative to solve these
problems
Follow the organization’s policies and procedures
for working with colleagues
8 Managing Health and Candidates will be able to:
Safety Comply with their organization’s current health,
safety and security policies and procedures
Report any identified breaches in health, safety, and
Theory Duration security policies and procedures to the designated
(hh:mm) person
5:00 Identify and correct any hazards that they can deal
with safely, competently and within the limits of
Practical Duration their authority
(hh:mm) Report any hazards that they are not competent to
20:00 deal with to the relevant person in line with
organizational procedures and warn other people
Corresponding NOS who may be affected
Code Follow their organization’s emergency procedures
SSC/N9003 promptly, calmly, and efficiently
Identify and recommend opportunities for
improving health, safety, and security to the
designated person
Complete any health and safety
9 Data and Information Candidates will be able to: Refer to Unique Equipment
Management Establish and agree with appropriate people the Required Section
data/information they need to provide, the formats
in which they need to provide it, and when they
need to provide it
Theory Duration Obtain the data/information from reliable sources
(hh:mm) Check that the data/information is accurate,
15:00 complete and up-to-date
Obtain advice or guidance from appropriate people
Practical Duration where there are problems with the
(hh:mm) data/information
35:00 Carry out rule-based analysis of the
data/information, if required
Corresponding NOS Insert the data/information into the agreed formats
Code Check the accuracy of their work, involving
SSC/N9004 colleagues where required
Report any unresolved anomalies in the
data/information to appropriate people
Provide complete, accurate and up-to-date
data/information to the appropriate people in the
required formats on time
8
10 Learning and Self Candidates will be able to: Refer to Unique Equipment
Development Obtain advice and guidance from appropriate Required Section
people to develop their knowledge, skills and
competence
Identify accurately the knowledge and skills they
Theory Duration need for their job role
(hh:mm) Identify accurately their current level of knowledge,
5:00 skills and competence and any learning and
development needs
Practical Duration Agree with appropriate people a plan of learning
(hh:mm) and development activities to address their
20:00 learning needs
Undertake learning and development activities in
Corresponding NOS line with their plan
Code Apply new knowledge and skills in the workplace,
SSC/N9005 under supervision
Obtain feedback from appropriate people on their
knowledge and skills and how effectively they apply
them
Review their knowledge, skills and competence
regularly and take appropriate action
9
For team discussions: Adequate seating arrangement in full / half circle format for
one or more teams as per planned team composition.
Reading Resources: Various publicly available sources such as ISO, PCI-DSS,
pentest-standard, National Vulnerability database, Coursera, Udemy;
Access to relevant sample documents and learning forums to enable self-study before
and after each training session.
(This Syllabus/Curriculum has been approved by IT-ITeS Sector Skills Council NASSCOM.)
10
Trainer Prerequisites for Job role: ‘’Security Analyst’’ mapped to Qualification Pack: ‘’SSC/Q0901’’
4a Domain Certification Minimum accepted score in SSC Assessment is 90% per NOS being taught in QP
SSC/Q0901.
11
Annexure: Assessment Criteria
12
PC3. utilize your time effectively 12.5 6.25 6.25
PC4. use resources correctly and efficiently 18.75 6.25 12.5
PC5. treat confidential information correctly 6.25 0 6.25
PC6. work in line with your organization’s policies
and procedures 12.5 0 12.5
PC7. work within the limits of your job role 6.25 0 6.25
PC8. obtain guidance from appropriate people,
where necessary 6.25 0 6.25
PC9. ensure your work meets the agreed
requirements 18.75 6.25 12.5
Tota
l 100 25 75
3.SSC/N9002 PC1. communicate with colleagues clearly, concisely
(Work effectively and accurately
with colleagues) 20 0 20
PC2. work with colleagues to integrate your work
effectively with theirs 10 0 10
PC3. pass on essential information to colleagues in line
with organizational requirements 10 10 0
PC4. work in ways that show respect for colleagues 20 0 20
PC5. carry out commitments you have made to 100
colleagues 10 0 10
PC6. let colleagues know in good time if you cannot
carry out your commitments, explaining the reasons 10 10 0
PC7. identify any problems you have working with
colleagues and take the initiative to solve these
problems 10 0 10
PC8. follow the organization’s policies and procedures
for working with colleagues 10 0 10
Tota
l
100 20 80
4.SSC/N9003 PC1. comply with your organization’s current health,
(Maintain a safety and security policies and procedures
healthy, safe and
secure working
environment) 20 10 10
PC2. report any identified breaches in health, safety,
and security policies and procedures to the designated
person 10 0 10
PC3. identify and correct any hazards that you can
deal with safely, competently and within the limits of
your authority 20 10 10
100
PC4. report any hazards that you are not competent
to deal with to the relevant person in line with
organizational procedures and warn other people who
may be affected 10 0 10
PC5. follow your organization’s emergency
procedures promptly, calmly, and efficiently 20 10 10
PC6. identify and recommend opportunities for
improving health, safety, and security to the
designated person 10 0 10
PC7. complete any health and safety records legibly
and accurately 10 0 10
Tota
l 100 30 70
13
5.SSC/N9004 PC1. establish and agree with appropriate people the
(Provide data/information you need to provide, the formats in
data/information which you need to provide it, and when you need to
in standard provide it
formats) 12.5 12.5 0
PC2. obtain the data/information from reliable sources 12.5 0 12.5
PC3. check that the data/information is accurate,
complete and up-to-date 12.5 6.25 6.25
PC4. obtain advice or guidance from appropriate
people where there are problems with the
data/information 6.25 0 6.25
100
PC5. carry out rule-based analysis of the
data/information, if required 25 0 25
PC6. insert the data/information into the agreed
formats 12.5 0 12.5
PC7. check the accuracy of your work, involving
colleagues where required 6.25 0 6.25
PC8. report any unresolved anomalies in the
data/information to appropriate people 6.25 6.25 0
PC9. provide complete, accurate and up-to-date
data/information to the appropriate people in the
required formats on time 6.25 0 6.25
Tota
l 100 25 75
6.SSC/N9005 PC1. obtain advice and guidance from appropriate
(Develop your people to develop your knowledge, skills and
knowledge, skills competence
and competence) 10 0 10
PC2. identify accurately the knowledge and skills you
need for your job role 10 0 10
PC3. identify accurately your current level of
knowledge, skills and competence and any learning
and development needs 20 10 10
PC4. agree with appropriate people a plan of learning
and development activities to address your learning 100
needs 10 0 10
PC5. undertake learning and development activities in
line with your plan 20 10 10
PC6. apply your new knowledge and skills in the
workplace, under supervision 10 0 10
PC7. obtain feedback from appropriate people on your
knowledge and skills and how effectively you apply
them 10 0 10
PC8. review your knowledge, skills and competence
regularly and take appropriate action 10 0 10
Tota
l 100 20 80
14