1069

1069 (NIST ID: K0177)

Knowledge

Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation or privileges, maintaining access, network exploitation, covering tracks).

Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.


Core KSAT for the following Work Roles

Cyber Defense Incident Responder (Core) ID: 531 (NIST ID: PR-IR-001) Category/Specialty Area: Protect & Defend / Incident Response
Workforce Element: Cybersecurity

Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.

Additional KSAT for the following Work Roles

Vulnerability Assessment Analyst (Additional) ID: 541 (NIST ID: PR-VA-001) Category/Specialty Area: Protect & Defend / Vulnerability Assessment & Management
Workforce Element: Cybersecurity

Performs assessments of systems and networks within the NE or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.