762

762 (NIST ID: T0175)

Task

Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs).

Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.


Core KSAT for the following Work Roles

No Work Roles with Core KSAT 762

Additional KSAT for the following Work Roles

Cyber Defense Forensics Analyst (Additional) ID: 212 (NIST ID: IN-FO-002) Category/Specialty Area: Investigate / Digital Forensics
Workforce Element: Cybersecurity

Analyzes digital evidence and investigates computer security incidents to derive useful information in support of system/network vulnerability mitigation.

Cyber Defense Incident Responder (Additional) ID: 531 (NIST ID: PR-IR-001) Category/Specialty Area: Protect & Defend / Incident Response
Workforce Element: Cybersecurity

Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.