3129

May 21, 2020
KSATs
3129 (NIST ID: K0362)

Knowledge

Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.).
Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.

Core KSAT for the following Work Roles

All-Source Analyst (Core) ID: 111 (NIST ID: AN-ASA-001) Workforce Element: Intelligence (Cyberspace)

Analyzes data/information from one or multiple sources to conduct preparation of the environment, respond to requests for information, and submit intelligence collection and production requirements in support of planning and operations.
Cyber Intelligence Planner (Core) ID: 331 (NIST ID: CO-PL-001) Workforce Element: Intelligence (Cyberspace)

Develops detailed intelligence plans to satisfy cyber operations requirements. Collaborates with cyber operations planners to identify, validate, and levy requirements for collection and analysis. Participates in targeting selection, validation, synchronization, and execution of cyber actions. Synchronizes intelligence activities to support organization objectives in cyberspace.
Cyber Operations Planner (Core) ID: 332 (NIST ID: CO-PL-002) Workforce Element: Cyberspace Effects

Develops detailed plans for the conduct or support of the applicable range of cyber operations through collaboration with other planners, operators and/or analysts. Participates in targeting selection, validation, synchronization, and enables integration during the execution of cyber actions.
Exploitation Analyst (Core) ID: 121 (NIST ID: AN-XA-001) Workforce Element: Cyberspace Effects

Collaborates to identify access and collection gaps that can be satisfied through cyber collection and/or preparation activities. Leverages all authorized resources and analytic techniques to penetrate targeted networks.
Mission Assessment Specialist (Core) ID: 112 (NIST ID: AN-AN-002) Workforce Element: Cyberspace Effects

Develops assessment plans and measures of performance/effectiveness. Conducts strategic and operational effectiveness assessments as required for cyber events. Determines whether systems performed as expected and provides input to the determination of operational effectiveness.
Partner Integration Planner (Core) ID: 333 (NIST ID: CO-PL-003) Workforce Element: Cyberspace Effects

Works to advance cooperation across organizational or national borders between cyber operations partners. Aids the integration of partner cyber teams by providing guidance, resources, and collaboration to develop best practices and facilitate organizational support for achieving objectives in integrated cyber actions.
Warning Analyst (Core) ID: 141 (NIST ID: AN-TA-001) Workforce Element: Cyberspace Effects

Develops unique cyber indicators to maintain constant awareness of the status of the highly dynamic operating environment. Collects, processes, analyzes, and disseminates cyber warning assessments.

Additional KSAT for the following Work Roles

Target Developer (Additional) ID: 131 (NIST ID: AN-TD-001) Workforce Element: Cyberspace Effects

Performs target system analysis, builds and/or maintains electronic target folders to include inputs from environment preparation, and/or internal or external intelligence sources. Coordinates with partner target activities and intelligence organizations, and presents candidate targets for vetting and validation.
Target Network Analyst (Additional) ID: 132 (NIST ID: AN-TD-002) Workforce Element: Cyberspace Effects

Conducts advanced analysis of collection and open-source data to ensure target continuity; to profile targets and their activities; and develop techniques to gain more target information. Determines how targets communicate, move, operate and live based on knowledge of target technologies, digital networks and the applications on them.