1037

1037 (NIST ID: K0169)

Knowledge

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.


Core KSAT for the following Work Roles

Authorizing Official/Designated Representative (Core) ID: 611 (NIST ID: SP-RM-001) Workforce Element: Cybersecurity

Senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation (CNSSI 4009).

Information Systems Security Manager (Core) ID: 722 (NIST ID: OV-MG-001) Workforce Element: Cybersecurity

Responsible for the cybersecurity of a program, organization, system, or enclave.

IT Project Manager (Core) ID: 802 (NIST ID: OV-PM-002) Workforce Element: Cyberspace Enablers / Acquisition

Work that involves directly managing information technology projects to provide a unique service or product.

Product Support Manager (Core) ID: 803 (NIST ID: OV-PM-003) Workforce Element: Cyberspace Enablers / Acquisition

Manages the package of support functions required to field and maintain the readiness and operational capability of systems and components.

Additional KSAT for the following Work Roles

Information Systems Security Developer (Additional) ID: 631 (NIST ID: SP-SYS-001) Workforce Element: Cybersecurity

Designs, develops, tests, and evaluates information system security throughout the systems development lifecycle.

IT Investment/Portfolio Manager (Additional) ID: 804 (NIST ID: OV-PM-004) Workforce Element: Cyberspace Enablers / Acquisition

Manages a portfolio of IT capabilities that align with the overall needs of mission and business enterprise priorities.

IT Program Auditor (Additional) ID: 805 (NIST ID: OV-PM-005) Workforce Element: Cyberspace Enablers / Acquisition

Conducts evaluations of an IT program or its individual components, to determine compliance with published standards.

Program Manager (Additional) ID: 801 (NIST ID: OV-PM-001) Workforce Element: Cyberspace Enablers / Acquisition

Leads, coordinates, communicates, integrates and is accountable for the overall success of the program, ensuring alignment with critical agency priorities.

Research & Development Specialist (Additional) ID: 661 (NIST ID: SP-RD-001) Workforce Element: IT (Cyberspace)

Conducts software and systems engineering and software systems research in order to develop new capabilities, ensuring cybersecurity is fully integrated. Conducts comprehensive technology research to evaluate potential vulnerabilities in cyberspace systems.

Security Control Assessor (Additional) ID: 612 (NIST ID: SP-RM-002) Workforce Element: Cybersecurity

Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST 800-37).

System Testing and Evaluation Specialist (Additional) ID: 671 (NIST ID: SP-TE-001) Workforce Element: IT (Cyberspace)

Plans, prepares, and executes tests of systems to evaluate results against specifications and requirements as well as analyze/report test results.

Systems Developer (Additional) ID: 632 (NIST ID: SP-SYS-002) Workforce Element: IT (Cyberspace)

Designs, develops, tests, and evaluates information systems throughout the systems development lifecycle.

Systems Requirements Planner (Additional) ID: 641 (NIST ID: SP-RP-001) Workforce Element: IT (Cyberspace)

Consults with customers to evaluate functional requirements and translate functional requirements into technical solutions.