Unit Outline
ZAT126
Cyber Threat Intelligence
Semester 1, 2025
Lachlan Hardy
University College
University College
CRICOS Provider Code: 00586B
Unit Coordinator
Lachlan Hardy
Email: Lachlan.Hardy@utas.edu.au
 
What is the Unit About?
Unit Description
This unit introduces you to industry approaches taken in threat intelligence and assessment. The unit will be task-focused and will allow you to explore the threat intelligence process with a focus on three key areas: understanding industry threat landscapes; legal and ethical considerations for penetration testing; and understanding and assessing penetration testing processes within industry contexts.
Intended Learning Outcomes
As per the Assessment and Results Policy 1.3, your results will reflect your achievement against specified learning outcomes.
On completion of this unit, you will be able to:
1
Analyse the legal and ethical aspects of cyber threat intelligence in industry settings.
2
Analyse and communicate results of cyber threat intelligence to a professional standard.
3
Assess and reflect on the effectiveness of threat intelligence to produce client focused cyber threat reports.
Requisites
REQUISITE TYPE
REQUISITES
Anti-requisite (mutual excl)
ZAT205
ZAT215
Alterations as a result of student feedback
Not applicable.
 
 
Teaching arrangements
ATTENDANCE MODE
TEACHING TYPE
LEARNING ACTIVITY
CONTACT HOURS
FREQUENCY
Online
Tutorial (Online)
No Description
2
Weekly
Attendance / engagement expectations
If your unit is offered On campus, it is expected that you will attend all on-campus and onsite learning activities. This is to support your own learning and the development of a learning community within the unit. If you are unable to attend regularly, please discuss the situation with your course coordinator and/or our UConnect support team.

If your unit is offered Online or includes online activities, it is expected you will engage in all those activities as indicated in the Unit Outline or MyLO, including any self-directed learning.

If you miss a learning activity for a legitimate reason (e.g., illness, carer responsibilities) teaching staff will attempt to provide alternative activities (e.g., make up readings) where it is possible.
 
 
 
 
How will I be Assessed?
 
For more detailed assessment information please see MyLO.
Assessment schedule
ASSESSMENT TASK #
ASSESSMENT TASK NAME
DATE DUE
WEIGHT
LINKS TO INTENDED LEARNING OUTCOMES
Assessment Task 1:
Cyber Industry Scan
Week 4
30 %
LO1, LO2, LO3
Assessment Task 2:
Penetration Testing Agreement Critique
Week 8
30 %
LO1, LO2, LO3
Assessment Task 3:
Presentation of Training Materials
Week 13
40 %
LO1, LO2, LO3
 
Assessment details
Assessment Task 1: Cyber Industry Scan
Task Description:
You will use your knowledge and understanding of cyber threat intelligence to undertake an investigation of an industry across a specified five-year timeframe. In this scan you will be required to find cyber threats that the industry has faced, cite your sources of information for those threats, and write up to a 50-word summary of each threat. Finally, you will write a 300-word critique of the threat landscape based on your investigation.
Task Length:
Maximum of 3 A4 pages
Due Date:
Week 4
Weight:
30 %
 
CRITERION #
CRITERION
MEASURES INTENDED
LEARNING OUTCOME(S)
1
Use current industry sources to find credible evidence of threats.
LO3
2
Analyse industry-relevant cyber threat intelligence to find threats.
LO2
3
Identify and communicate the legal and ethical impacts of threats.
LO1
4
Summarise the threat landscape based on cyber threat intelligence principles.
LO2
5
Communicate threats using industry relevant techniques and formatting.
LO3
 
Assessment Task 2: Penetration Testing Agreement Critique
Task Description:
You will apply your knowledge of cyber threat intelligence, ethics, and cyber law to critique a penetration testing agreement. You will identify the correct tools and techniques, relevant legal and ethical considerations, and relevant processes in the agreement. You will then critique the original agreement and suggest improvements to the agreement.
Task Length:
1500 words maximum.
Due Date:
Week 8
Weight:
30 %
 
 
CRITERION #
CRITERION
MEASURES INTENDED
LEARNING OUTCOME(S)
1
Analyse the ethics of client focused penetration testing.
LO1
2
Describe legal aspects of client focused penetration testing.
LO2
3
Apply cyber threat knowledge to critically assess cyber security information.
LO2
4
Communicate and reflect on decisions made using industry relevant language and formatting.
LO3
 
Assessment Task 3: Presentation of Training Materials
Task Description:
You will be provided with an industry threat report which you will need to thoroughly read and analyse for technical and non-technical details.

Using the contents of the report, your understanding of CTI across the semester, and your information gathering and analysis skills, you will create a 10-minute recorded presentation of training materials for an organisation looking to improve their cyber security resilience.

Your training materials will include power points slides, with at least 8 substantive slides (slides with content that is relevant to the organisations training). Substantive slides are not slides such as title and references. You should also have voice and video as part of your recording, this can be recorded through PowerPoint or using Zoom.

Across your substantive slides, you will need to describe the threat landscape, specific significant threats, and what training can be done to address those threats. You will also need at least 1 slide that demonstrates an example of such recommended training.

You will need to record your presentation and slides and submit the recording, along with a copy of your slides and a transcript (if used) of your presentation to MyLO.
Task Length:
10 minute recorded presentation using a minimum of 8 substantive power point slides - not including title slide and reference slide.
Due Date:
Week 13
Weight:
40 %
 
CRITERION #
CRITERION
MEASURES INTENDED
LEARNING OUTCOME(S)
1
Analyse industry reports on current threats within organisational contexts.
LO1
2
Analyse available tools, techniques, and processes for improving cyber security.
LO2
3
Develop client focused cyber security recommendations based on industry best practice.
LO3
4
Communicate threats and solutions professionally to impact security behaviours.
LO3
 
 
 
How your final result is determined
To pass this unit, you need to demonstrate your attainment of each of the Intended Learning Outcomes, achieve a final unit grade of 50% or greater, and pass any hurdle tasks.
Academic progress review
The results for this unit may be included in a review of your academic progress. For information about progress reviews and what they mean for all students, see Academic Progress Review in the Student Portal.
Submission of assignments
Where practicable, assignments should be submitted to an assignment submission folder in MYLO. You must submit assignments by the due date or receive a penalty (unless an extension of time has been approved by the Unit Coordinator). Students submitting any assignment in hard copy, or because of a practicum finalisation, must attach a student cover sheet and signed declaration for the submission to be accepted for marking.
Academic integrity
Academic integrity is about acting responsibly, honestly, ethically, and collegially when using, producing, and communicating information with other students and staff members.

In written work, you must correctly reference the work of others to maintain academic integrity. To find out the referencing style for this unit, see the assessment information in the MyLO site, or contact your teaching staff. For more detail about Academic Integrity, see Important Guidelines & Support.
Requests for extensions
If you are unable to submit an assessment task by the due date, you should apply for an extension.
 
A request for an extension should first be discussed with your Unit Coordinator or teaching support team where possible. A request for an extension must be submitted by the assessment due date, except where you can provide evidence it was not possible to do so. Typically, an application for an extension will be supported by documentary evidence: however, where it is not possible for you to provide evidence please contact your Unit Coordinator.
 
The Unit Coordinator must notify you of the outcome of an extension request within 3 working days of receiving the request.
Late penalties
Assignments submitted after the deadline will receive a late penalty of 5% of the original available mark for each calendar day (or part day) that the assignment is late. Late submissions will not be accepted more than 10 calendar days after the due date, or after assignments have been returned to other students on a scheduled date, whichever occurs first. Further information on Late Penalties can be found on the Assessments and Results Procedure.
 
Review of results and appeals
You are entitled to ask for a review of the marking and grading of your assessment task if there is an irregularity in the marking standards or an error in the process for determining the outcome of an assessment. Details on how to request a review of a mark for an assignment are outlined in the Review and Appeal of Academic Decisions Procedure.
 
 
 
Required Resources
Required reading materials
 
 
Recommended reading materials
 
 
Other required resources
A student subscription to TryHackMe