Higher Nationals

Internal verification of assessment decisions – BTEC (RQF)

INTERNAL VERIFICATION – ASSESSMENT DECISIONS
Programme title BTEC Higher National Diploma in Computing

Assessor Internal Verifier

Unit 17- Network Security
Unit(s)
Assignment title Secure Network for AstraZeneca Campus

Student’s name
List which assessment Pass Merit Distinction
criteria the Assessor has
awarded.
INTERNAL VERIFIER CHECKLIST
Do the assessment criteria awarded
match those shown in the assignment Y/N
brief?

Is the Pass/Merit/Distinction grade awarded

justified by the assessor’s comments on the Y/N
student work?
Has the work been assessed
Y/N
accurately?
Is the feedback to the student:
Give details:

• Constructive?
Y/N
• Linked to relevant assessment
criteria? Y/N

• Identifying opportunities for

improved performance? Y/N

• Agreeing actions? Y/N

Does the assessment decision need

Y/N
amending?
Assessor signature Date

Internal Verifier signature Date

Programme Leader signature
Date
(if required)

2
Confirm action completed
Remedial action taken

Give details:

Assessor signature Date

Internal Verifier
Date
signature
Programme Leader
Date
signature (if required)

2
Higher Nationals – Summative Assignment Feedback Form

Student Name/ID

Unit Title Unit 17- Network Security

Assignment Number 1 Assessor

Date Received 1st
Submission Date
submission
Date Received 2nd
Re-submission Date
submission
Assessor Feedback:

LO1 Examine Network Security principles, protocols and standards.

Pass, Merit & Distinction P1 P2 M1 D1

Descripts
LO2 Design a secure network for a corporate environment.

Pass, Merit & Distinction P3 P4 M2 D1

Descripts

LO3 Configure Network Security measures for the corporate environment.

Pass, Merit & Distinction P5 P6 M3 D2
Descripts

LO4 Undertake the testing of a network using a Test Plan.

Pass, Merit & Distinction P7 P8 M4 M5 D3
Descripts

Grade: Assessor Signature: Date:

Resubmission Feedback:

Grade: Assessor Signature: Date:

Internal Verifier’s Comments:

Signature & Date:

* Please note that grade decisions are provisional. They are only confirmed once internal and external moderation has taken place and grades
decisions have been agreed at the assessment board.

2
General Guidelines

1. A Cover page or title page – You should always attach a title page to your assignment. Use
previous page as your cover sheet and make sure all the details are accurately filled.
2. Attach this brief as the first section of your assignment.
3. All the assignments should be prepared using a word processing software.
4. All the assignments should be printed on A4 sized papers. Use single side printing.
5. Allow 1” for top, bottom , right margins and 1.25” for the left margin of each page.

Word Processing Rules

1. The font size should be 12 point, and should be in the style of Time New Roman.
2. Use 1.5 line spacing. Left justify all paragraphs.
3. Ensure that all the headings are consistent in terms of the font size and font style.
4. Use footer function in the word processor to insert Your Name, Subject, Assignment No,
and Page Number on each page. This is useful if individual sheets become detached for any
reason.
5. Use word processing application spell check and grammar check function to help editing your
assignment.

Important Points:

1. It is strictly prohibited to use textboxes to add texts in the assignments, except for the
compulsory information. eg: Figures, tables of comparison etc. Adding text boxes in the body
except for the before mentioned compulsory information will result in rejection of your work.
2. Avoid using page borders in your assignment body.
3. Carefully check the hand in date and the instructions given in the assignment. Late
submissions will not be accepted.
4. Ensure that you give yourself enough time to complete the assignment by the due date.
5. Excuses of any nature will not be accepted for failure to hand in the work on time.
6. You must take responsibility for managing your own time effectively.
7. If you are unable to hand in your assignment on time and have valid reasons such as illness,
you may apply (in writing) for an extension.
8. Failure to achieve at least PASS criteria will result in a REFERRAL grade .
9. Non-submission of work without valid reasons will lead to an automatic RE FERRAL. You
will then be asked to complete an alternative assignment.
10. If you use other people’s work or ideas in your assignment, reference them properly using
HARVARD referencing system to avoid plagiarism. You have to provide both in-text citation
and a reference list.
11. If you are proven to be guilty of plagiarism or any academic misconduct, your grade could be
reduced to A REFERRAL or at worst you could be expelled from the course.

2
Student Declaration

I hereby, declare that I know what plagiarism entails, namely, to use another’s work and to present it
as my own without attributing the sources in the correct way. I further understand what it means to
copy another’s work.

1. I know that plagiarism is a punishable offence because it constitutes theft.

2. I understand the plagiarism and copying policy of the Edexcel UK.
3. I know what the consequences will be if I plagiaries or copy another’s work in any of the
assignments for this program.
4. I declare therefore that all work presented by me for every aspects of my program, will be my
own, and where I have made use of another’s work, I will attribute the source in the correct
way.
5. I acknowledge that the attachment of this document signed or not, constitutes a binding
agreement between myself and Edexcel UK.
6. I understand that my assignment will not be considered as submitted if this document is not
attached to the attached.

Student’s Signature: Date:

(Provide E-mail ID) (Provide Submission
Date)

2
Feedback Form

Formative Feedback : Assessor to Student

Action Plan

Summative feedback

Feedback: Student to Assessor.

Assessor’s
Date
Signature

Student’s
Signature Date

2
Assignment Brief

Student Name /ID Number

Unit Number and Title Unit 17- Network Security

Academic Year 2021/22

Unit Tutor

Assignment Title Secure Network for AstraZeneca Campus

Issue Date

Submission Date

IV Name & Date

Submission Format:
The submission should be in the form of an individual written report. This should be written in a
concise, formal business style using single spacing and font size 12. You are required to make use of
headings, paragraphs and subsections as appropriate, and all work must be supported with evidence.
You must provide in-text citations and the reference list using Harvard referencing system.

Unit Learning Outcomes:

LO1. Examine Network Security principles, protocols and standards.
LO2. Design a secure network for a corporate environment.
LO3. Configure Network Security measures for the corporate environment.
LO4 Undertake the testing of a network using a Test Plan.

2
Assignment Brief and Guidance:
AstraZeneca Campus is an education institute with 2 remote campuses and the main campus in
Colombo. The Web server, Moodle server and the Mail servers are located at the main campus
which uses high speed Internet leased line connection from the ISP. The Moodle Server which is
used to do practical can only be accessed from the local network at the main campus. The main
campus network connectivity is provided via wired connections. Layer 2 and Layers 3 security should be
implemented on the main branch. Wireless connectivity is provided for the students only for Internet
access and strict control of data usage and URL filtering is required.
The management of the institute is planning to extend the facilities available in the main campus
network to the students in remote campuses through a VPN connectivity and also to minimize the
possibility of cyber-attacks to the main campus network to comply with the current network security
standards.
Assuming you have been appointed as the new network security analyst of AstraZeneca Campus,
prepare a network security architectural design with your suggestions and recommendations to
improve the security standard. In the designing process, you may consider the following aspects;

1. Main campus LAN need to be a Gigabit Ethernet and all Network devices need to be compatible
with each other for maximum performance.
2. All the network devices should be manageable and only secure logins need be allowed on all
devices.
3. AAA should use for Network Device login Authentication where possible and Syslog Server should
use for record logging events, while having NTP server for time.
4. All publicly available resources including public web servers need to be separated from the main
network and should move to a separate subnet. Only Secure Web Access should be enabled for
web servers.
5. Network design should follow the Hierarchical Network Design Model.
6. End user authentication and managing of security polices need to centralized.
7. Internet usage management and URL filtering need to be enforced.
8. Communication between the Head office and the Branch offices need to be highly secured.
9. Quality of service (QoS) should be implemented where possible.

2
(Hint: Clearly state your assumptions. You are allowed to assume the current network setup
according to the services available and propose the improvements according to your assumptions)
Activity 1
1.1 Discuss different types of network security hardware and software that are used in modern
network design.
1.2 Examine network security protocols and standards for secure network design while comparing and
contrasting at least two major network security protocols that can be implemented into the given
context.
Activity 2
2.1 Investigate the purpose and requirements of a secure network for the network of AstraZeneca
campus while reviewing the importance of network security to the organization.
2.2 Determine which HW/SW are suitable for AstraZeneca campus and provide a suitable IP allocation
plan using 172.30.0.0/16 network. Create a network design (blue print) for internal and branch
network of AstraZeneca (Public servers should be separated from the Internal Network).
Activity 3
3.1 Configure all the network devices to achieve the highest level of security and design and describe
the cryptographic types and other security related concepts and technologies used for the design.
(Provide configuration scripts/files/screenshots with comments)
3.2 Download open source PfSense firewall and configure basic firewall settings including DMZ and
VPN configurations. (Provide configuration scripts/files/screenshots with comments). Review how
QoS can be integrated into Network security configurations

Activity 4
4.1 Create a test plan and test your network (LAN and WAN). Critically evaluate the test results.
(Provide test configuration scripts/files/screenshots with comments.)

4.2 Make improvement/ recommendations to the re-designed network of AstraZeneca while critically
evaluating the design, plan, configuration, and testing of the implemented network.

2
Grading Rubric

Grading Criteria Achieved Feedback

LO1 Examine Network Security principles, protocols, and

standards

P1 Discuss the different types of Network Security devices.

P2 Examine Network Security protocols
M1 Compare and contrast at least two major Network
Security protocols.
LO2 Design a secure network for a corporate environment

P3 Investigate the purpose and requirements of a secure

network according to a given scenario.

P4 Determine which network hardware and software to use

in this network
M2 Create a design of a secure network according to a
given scenario.
D1 Review the importance of network security to an
organisation
LO3 Configure Network Security measures for the
2
corporate environment

P5 Configure Network Security for your network.

P6 Discuss different cryptographic types of Network

Security
M3 Provide Network Security configuration
scripts/files/screenshots with comments.
D2 Review what is meant by Quality of Service (QoS) in
relation to Network Security configuration.

LO4 Undertake the testing of a network using a Test Plan

P7 Create a Test Plan for your network

P8 Comprehensively test your network using the devised

Test Plan.
M4 Provide scripts/files/ screenshots of the testing of
your network.

M5 Make some improvement recommendations.

D3 Critically evaluate the design, planning, configuration
and testing of your network.

2
2