150

150 (NIST ID: K0106)

Knowledge

Knowledge of what constitutes a network attack and the relationship to both threats and vulnerabilities.

Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.


Core KSAT for the following Work Roles

Cyber Defense Analyst (Core) ID: 511 (NIST ID: PR-DA-001) Category/Specialty Area: Protect & Defend / Cyber Defense Analysis
Workforce Element: Cybersecurity

Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs.) to analyze events that occur within their environments for the purposes of mitigating threats.

Cyber Defense Incident Responder (Core) ID: 531 (NIST ID: PR-IR-001) Category/Specialty Area: Protect & Defend / Incident Response
Workforce Element: Cybersecurity

Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.

Cyber Defense Infrastructure Support Specialist (Core) ID: 521 (NIST ID: PR-INF-001) Category/Specialty Area: Protect & Defend / Cyber Defense Infrastructure Support
Workforce Element: Cybersecurity

Tests, implements, deploys, maintains, and administers the infrastructure hardware and software.

Information Systems Security Manager (Core) ID: 722 (NIST ID: OV-MG-001) Category/Specialty Area: Oversee & Govern / Cybersecurity Management
Workforce Element: Cybersecurity

Responsible for the cybersecurity of a program, organization, system, or enclave.

Vulnerability Assessment Analyst (Core) ID: 541 (NIST ID: PR-VA-001) Category/Specialty Area: Protect & Defend / Vulnerability Assessment & Management
Workforce Element: Cybersecurity

Performs assessments of systems and networks within the NE or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.

Additional KSAT for the following Work Roles

No Work Roles with Additional KSAT 150