About the course

About the course

If you have an interest in working in the information technology industry, our cyber security course will help you develop the skills and knowledge for a successful career as a cyber security paraprofessional.

As a cyber security paraprofessional you'll:

  • detect or determine breaches in network and system security
  • know how to escalate an incident to the security response team
  • work confidently with a range of stakeholders (internal or external) who need to be aware of a threat or vulnerability

In our cyber security course, you'll gain practical skills in:

  • PEN testing
  • identifying and reporting website and system vulnerabilities
  • system testing
  • securing PCs in a workplace environment
  • evaluating and reporting cyber security incidents  
  • networking concepts and protocols
  • setting up and managing network security
  • security script programming
  • website security
  • problem researching
  • working with a team to develop cyber policies and procedures to meet workplace and legislative requirements

We developed our cyber security course in conjunction with a significant industry advisory panel comprised of cyber security specialists in the security, banking, information technology and telecommunications industries.

Like Box Hill Institute - IT & Cyber Security on Facebook Facebook
Follow Box Hill Institute - IT & Cyber Security on Instagram Instagram

Course Details


Intake Dates & Course Length

January and July

Full time: 12 months

Student support
balance scales icon
Learn more about

study-life balance

Support services

Career Outcomes

After successful completion of our our cyber security course, you can apply for a range of employment opportunities such as being a:

  • cyber security paraprofessional supporting the operation of large, small and medium enterprise computing environments
  • computer helpdesk technician
  • cyber security intrusion tester
  • cyber security support officer
  • security penetration tester
  • information systems security support officer
  • systems tester
  • PC support
  • network security support officer
  • network security trainee
  • website security support officer
students sitting in park
International Alumni

View our International Alumni

View our International Alumni

Entry and Academic Requirements

International students must have completed an Australian Year 11 or international equivalent with a pass.

Current Working with Children and Police Checks if you undertake a work placement in this field.

PLEASE NOTE: Box Hill Institute only accept enrolments from international students who are 18 years of age or above at the time of course commencement.

English Language Requirements

A minimum IELTS overall score of 5.5 (Academic). A minimum TOEFL score of 530 for paper examination; 179 for computer based and 71 for internet based, or approved equivalent.

For other accepted tests, please visit the English Language Requirements page.


International students please apply through:

  1. an authorised representative in your country
  2. a Box Hill Institute booth at an education exhibition
  3. or direct to Box Hill Institute

See how to apply or contact the international office for more information.

computer connected to phone icon

How to enrol as an International Student

Start your application

Pathways & Accreditation

Successful completion of our cyber security course enables you to continue your studies in the Advanced Diploma of Cyber Security or in a diploma, advanced diploma or degree in information technology or security.

International students: You may wish to apply or package this course with the Advanced Diploma of Cyber Security at Box Hill Institute. Available for January intake.

This course is government accredited and has national recognition

The qualification is aligned with the Australian Qualification Framework (AQF) level 4

people at desk icon
No question is too big or small.
Give us a call on 1300 269 445


Annual Tuition Fee$10,500
Annual Service Fee$160
Annual Material Fee$220
Retain Course Items (Year 1)$0
Estimated Annual Fee$10,880

Retain Course Items are purchased once by the student prior to commencing. Those items then become the property of the student. Fees listed are at 2020 rates and may increase annually over the duration of delivery. The student tuition fees listed are subject to change given individual circumstances at enrolment. For more information please contact our Course Advisors on 1300 BOX HILL.

Student support
piggy bank with coin icon
Financial Support

Learn more about our financial support options

Learn about your options

Course Structure

You need to complete 10 core units and 6 elective units to gain this qualification


  • VU21990 Recognise The Need For Cyber Security In An Organisation
    60.0 hours

    This unit provides introductory knowledge and skills to recognize threats, risks and vulnerabilities to cyber security in an organisation. It includes the threats an organisation encompasses such as networks, machines, applications, data, users and infrastructure. The unit also covers an introduction to common cyber security attack mechanisms and an introduction to identity and threat management as well as security issues surrounding Internet of Things (IOT) devices. Finally, the unit introduces the implementation of tools and systems an organisation can use to protect from cyber-attacks.

  • BSBWHS401 Implement And Monitor Whs Policies, Procedures And Programs To Meet Legislative Requirements
    50.0 hours

    This unit describes the skills and knowledge required to implement and monitor an organisations work health and safety (WHS) policies, procedures and programs in the relevant work area in order to meet legislative requirements.
    It applies to individuals with supervisory responsibilities for implementing and monitoring the organisations WHS policies, procedures and programs in a work area. These individuals have a broad knowledge of WHS policies and contribute well developed skills in creating solutions to unpredictable problems through analysis and evaluation of information from a variety of sources. They provide supervision and guidance to others and have limited responsibility for the output of others.

  • ICTPRG407 Write Script For Software Applications
    40.0 hours

    This unit describes the skills and knowledge required to plan, design and build scripts, using a scripting language to construct a highly interactive and automated software application.
    It applies to individuals who build and integrate interactive applications, or websites for internal, and public, sites.  They may work as application developers, application-support personnel, programmers specialising in a scripting language, web application programmers, or web developers.

  • VU21988 Utilise Basic Network Concepts And Protocols Required In Cyber Security
    80.0 hours

    This unit provides a cyber security practitioner with an introduction to the skills and knowledge required to comprehend how data travels around the internet and the function and operation of protocols such as the Transmission Control Protocol/Internet Protocol (TCP/IP) suite and devices that facilitate this data transfer. 

  • BSBRES401 Analyse And Present Research Information
    40.0 hours

    Analyse and present research information contains the skills and knowledge required to gather, organise, analyse and present workplace information using available systems. This includes identifying research requirements and sources of information, applying information to a set of facts, evaluating the quality of the information, and preparing and producing reports.
    It applies to individuals who are required to apply their broad knowledge of the work environment to analysis and research tasks, evaluate information from a variety of sources and apply solutions to a range of unpredictable problems.

    Prerequisites: Nil

  • RIICOM301D Communicate Information
    30.0 hours

    This unit describes a participants skills and knowledge required to communicate effectively in the workplace within the Information Technology and Cyber Security industry. This includes communicating verbally, communicating in written form, participating in meetings, making presentations, and participating in internal negotiations.

    Prerequisites: Nil

  • ICTICT418 Contribute To Copyright, Ethics And Privacy In An Ict Environment
    40.0 hours

    This unit describes the skills and knowledge required to maintain professional and ethical conduct, as well as to ensure that personal information of stakeholders is handled in a confidential and professional manner when dealing with stakeholders in an information and communications technology (ICT) environment.
    It applies to ICT personnel who are required to gather information to determine the organisation s code of ethics, and protect and maintain privacy policies and system security.

    Prerequisites: Nil

  • VU21989 Test Concepts And Procedures For Cyber Security
    60.0 hours

    This unit provides introductory skills and knowledge required to implement testing procedures for systems in an organisation. These involve application layer testing tools as defined by the Open Web Application Security Project (OWASP), network testing and monitoring tools. The unit examines common threats, ethical hacking principles and introduction to penetration testing, social engineering security issues, enumeration, port scanning, sniffers, footprinting, traffic sniffers and wireless LAN vulnerabilities and contains a solid treatment of intrusions.

  • VU21991 Implement Network Security Infrastructure For An Organisation
    80.0 hours

    This unit provides a sound working knowledge of the key features which make up the network security for an organisation. The unit includes a detailed investigation of threats and mitigation techniques, network security architectures, introduction to firewall setup and configuration, intrusion prevention system (IPS) setup and operation as well as internetworking operating system (IOS) software features to harden routers and switches. The unit also investigates proxy server vulnerabilities, Wireless Lan (WLAN) security vulnerabilities and the application of Virtual Private Networks (VPN’s) and cryptography fundamentals.
    Prerequisites: VU21988 - Utilise basic network concepts and protocols required in cyber security VU21990 – Recognise the need for cyber security in an organisation

  • VU21992 Develop A Cyber Security Industry Project
    120.0 hours

    The purpose of this unit is to undertake a project that simulates a real cyber security environment. The project may include using a Cyber Security Operations Centre (CSOC) sandbox or equivalent laboratory environment. This environment allows the participant to demonstrate configuring and testing of firewalls, implementing Intrusion Detection System (IDS) and evaluating and identifying any traffic anomalies. The use of Red & Blue teaming exercises to identify security breaches and apply mitigation strategies to minimise further risk should be included as part of the exercise
    Prerequisites: ICTPRG407 - Write scripts for software applications VU21988 - Utilise basic network concepts and protocols required in cyber security VU21989 – Test concepts and procedures for cyber security VU21990 – Recognise the need for cyber security in an organisation

  • Electives

  • VU21993 Secure A Networked Personal Computer
    60.0 hours

    This unit provides base level skills and knowledge to configure an operating system on a personal computer, adding security, setting user level passwords and privileges to limit and identify user access – all required to increase protection of the end point from cyber security attacks. The unit also provides an overview of internet of things (IOT) devices, an introduction to computer networking virtualisation and base level Linux commands – deemed to be invaluable in using cyber security tools.

  • ICTPRG405 Automate Processes
    40.0 hours

    This unit describes the skills and knowledge required to write scripts to automate solutions, by using basic scripting processes, and application-specific scripting options.

    It applies to individuals who may work in information and communications technology (ICT) support roles and who are required to automate tasks.

  • VU21994 Perform Basic Cyber Security Data Analysis
    20.0 hours

    This unit provides the knowledge and skills necessary for a cyber security practitioner to detect and recognize discrepancies in data by performing analysis. The unit covers the collection of data on a scenario and performing basic analysis and includes the process of breaking down the scenario to a set of subtasks which are examined for their effectiveness. The unit includes an introduction of databases as a repository for data and the vulnerabilities that exist and an introduction to software tools to supporting pattern recognition.

  • VU21995 Manage The Security Infrastructure For The Organisation
    80.0 hours

    The unit provides the basic knowledge and skills required to manage the implementation of the security infrastructure for an organisation. It includes assessing risk, implementing appropriate controls, monitoring their effectiveness, following organisation policy to store relevant data and compiled reports for future audit purposes. The practitioner will monitor and evaluate the physical security infrastructure of the organisation, and implement a regular security infrastructure maintenance program.

  • VU21996 Evaluate And Test An Incident Response Plan For An Enterprise
    40.0 hours

    This unit provides the basic knowledge and skills for a cyber security practitioner to examine, as part of a team, an organisation’s existing incident response plan (IRP) and expand it as necessary to more thoroughly deal with incidents. The unit includes forming the team, clarifying roles, interpreting an incident response plan (IRP), using red and blue teams to test the IRP, implementing an incident, evaluating the IRP for its effectiveness and developing improvement.

  • VU21997 Expose Website Security Vulnerabilities
    40.0 hours

    This unit provides the knowledge and skills required to ensure and maintain the security of an organisation’s website by utilizing the outcomes of the Open Web Application Security Project (OWASP). Current penetration testing tools are also utilised to determine the vulnerabilities of a web site. Vulnerabilities are assessed and reported to appropriate personnel to minimize risk.

people at desk icon
No question is too big or small.
Give us a call on 1300 269 445

Is this the course for you? 
Enrol now or enquire about this course.


Interested in IT & Cyber Security?
Discover more

Discover IT & Cyber Security