965

May 21, 2020
KSATs
965 (NIST ID: K0149)

Knowledge

Knowledge of organization’s risk tolerance and/or risk management approach.
Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.

Core KSAT for the following Work Roles

Information Systems Security Manager (Core) ID: 722 (NIST ID: OV-MG-001) Workforce Element: Cybersecurity

Responsible for the cybersecurity of a program, organization, system, or enclave.

Additional KSAT for the following Work Roles

Authorizing Official/Designating Representative (Additional) ID: 611 (NIST ID: SP-RM-001) Workforce Element: Cybersecurity

Senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation (CNSSI 4009).
Executive Cyber Leader (Additional) ID: 901 (NIST ID: OV-EX-001) Workforce Element: Cyberspace Enablers / Leadership

Executes decision-making authorities and establishes vision and direction for an organization’s cyber and cyber-related policies, resources, and/or operations, while maintaining responsibility for risk-related decisions affecting mission success.
Product Manager (Additional) ID: 806 (NIST ID: N/A) Workforce Element: Software Engineering

Manages the development of products including the resource management, product strategy (physical or digital), functional requirements, and releases. Coordinate work done by functions (like software engineers, data scientists, and product designers).
Software Test & Evaluation Specialist (Additional) ID: 673 (NIST ID: N/A) Workforce Element: Software Engineering

Plans, prepares, and performs testing, evaluation, verification, and validation of software to evaluate results against specifications, requirements, and operational need.