Job Description (JD)
| Nama Program | PERKHIDMATAN KESELAMATAN SIBER (UJIAN PENEMBUSAN) [J620-001-5:2025] |
|---|---|
| Kod CU | J620-001-5:2025-C02 |
| Competency | Core |
| Tajuk CU | Execute Social Engineering Attack Simulation. |
| Penerangan CU | Execute social engineering attack describes a controlled social engineering test designed to identify and assess an organization’s susceptibility to social engineering tactics such as phishing or pretexting. It is typically conducted periodically or in response to emerging threats to evaluate employee awareness and the effectiveness of security training. This exercise is crucial for strengthening the organization’s defence by identifying potential human vulnerabilities. IT Security administrators often, with the help of ethical hackers, perform the simulation by creating realistic scenarios that mimic social engineering attacks. They monitor responses, analyse results and use insights to improve security training and policies. The person who is competent in this CU should be able to plan social engineering attack, perform social engineering simulation attack and analyse social engineering simulation attack. The outcome of this CU is the enhancement of the organization’s security posture by improving preparedness against real-world social engineering threats. |
| Tempoh Latihan | 120 |
| Objektif Pembelajaran | The learning outcomes of this competency are to enable the trainees to plan, execute, and analyse social engineering simulation attacks and improving an organization's ability to identify vulnerabilities and enhance its security posture through awareness and proactive measures. Upon completion of this competency unit, trainees should be able to: 1. Plan social engineering simulation attack. 2. Perform social engineering simulation attack. 3. Analyse social engineering simulation attack. |
| Pra-Syarat | Not Available. |