* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of organization’s enterprise information security architecture system.

Knowledge of information security systems engineering principles.

Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of secure configuration management techniques.

Knowledge of software development models (e.g., Waterfall Model, Spiral Model).

Knowledge of software engineering.

Knowledge of systems testing and evaluation methods.

Knowledge of the systems engineering process.

Develop detailed design documentation for component and interface specifications to support system design and development.

Implement designs for new or existing system(s).

Ensure design and development activities are properly documented (providing a functional description of implementation) and updated as necessary.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Knowledge of various types of computer architectures.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of access authentication methods.

Knowledge of encryption algorithms.

Knowledge of cryptology.

Knowledge of database systems.

Knowledge of electrical engineering as applied to computer architecture, including circuit boards, processors, chips, and associated computer hardware.

Knowledge of embedded systems.

Knowledge of fault tolerance.

Knowledge of how system components are installed, integrated, and optimized.

Knowledge of human-computer interaction principles.

Knowledge of information systems and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Knowledge of Information Theory (e.g., source coding, channel coding, algorithm complexity theory, and data compression).

Knowledge of local area and wide area networking principles and concepts including bandwidth management.

Knowledge of mathematics, including logarithms, trigonometry, linear algebra, calculus, and statistics.

Knowledge of microprocessors.

Knowledge of network access, identity, and access management (e.g., public key infrastructure [PKI]).

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs.

Knowledge of operating systems.

Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of parallel and distributed computing concepts.

Knowledge of policy-based and risk adaptive access controls.

Knowledge of Privacy Impact Assessments.

Knowledge of process engineering concepts.

Knowledge of security management.

Knowledge of structured analysis principles and methods.

Knowledge of system design tools, methods, and techniques.

Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design.

Knowledge of system life cycle management principles.

Knowledge of key telecommunications concepts (e.g., Routing Algorithms, Fiber Optics Systems Link Budgeting, Add/Drop Multiplexers).

Skill in integrating and applying policies that meet system security objectives.

Skill in creating policies that enable systems to meet performance objectives (e.g. traffic routing, SLA’s, CPU specifications).

Knowledge of countermeasure design for identified security risks.

Skill in designing countermeasures to identified security risks.

Skill in designing security controls based on cybersecurity principles and tenets.

Skill in designing the integration of hardware and software solutions.

Skill in detecting host and network based intrusions via intrusion detection technologies.

Knowledge of how detection technologies are used to detect host and network-based intrusions.

Knowledge of development and application of security system access controls.

Skill in discerning the protection needs (i.e., security controls) of information systems and networks.

Skill in evaluating the adequacy of security designs.

Skill in the use of design modeling (e.g., unified modeling language).

Skill in writing code in a currently supported programming language (e.g., Java, C++).

Analyze design constraints, analyze trade-offs and security design, and consider lifecycle support.

Build, assess, and modify product prototypes using working models or theoretical models.

Design and develop cybersecurity or cybersecurity-enabled products.

Design hardware, operating systems, or software applications to adequately address requirements.

Design or integrate appropriate data backup capabilities into overall system designs, and ensure appropriate technical and procedural processes exist for secure system backups and protected storage of backup data.

Design to security requirements to ensure requirements are met for all systems and/or applications.

Develop testing and validation procedures and documentation.

Develop architectures or system components consistent with technical specifications.

Develop Disaster Recovery and Continuity of Operations plans for systems under development and ensure testing prior to systems entering a production environment.

Develop risk mitigation strategies and cybersecurity countermeasures to address cost, performance, and security risks and to resolve vulnerabilities and recommend security changes to system or system components as needed.

Develop mitigation strategies to address cost, schedule, performance, and security risks.

Evaluate factors such as reporting formats required, cost constraints, and need for security restrictions to determine hardware configuration.

Identify components or elements, allocate comprehensive functional components to include security functions, and describe the relationships between the elements.

Identify and direct the remediation of technical problems encountered during testing and implementation of new systems (e.g., identify and find work-arounds for communication protocols that are not interoperable).

Identify and prioritize essential system functions or sub-systems required to support essential capabilities or business functions for restoration or recovery after a system failure or during a system recovery event based on overall system requirements for continuity and availability.

Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system and ensure recommended products are in compliance with organization’s evaluation and validation requirements.

Perform security reviews and identify security gaps in architecture.

Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.

Provide guidelines for implementing developed systems to customers or installation teams.

Provide input to implementation plans, standard operating procedures, maintenance documentation, and maintenance training materials

Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).

Store, retrieve, and manipulate data for analysis of system capabilities and requirements.

Provide support to test and evaluation activities.

Trace system requirements to design components and perform gap analysis.

Utilize models and simulations to analyze or predict system performance under different operating conditions.

Verify stability, interoperability, portability, and/or scalability of system architecture.

Knowledge of interpreted and compiled computer languages.

Analyze user needs and requirements to plan and conduct system development.

Collaborate with cybersecurity professionals to implement cybersecurity into designs to meet specific operational needs and environmental factors (e.g., access controls, automate d applications, networked operations, high integrity and availability requirements, multilevel security/processing of multiple classification levels, and processing Sensitive Compartmented Information).

Develop designs to meet specific operational needs and environmental factors (e.g., access controls, automated applications, networked operations.

Skill in conducting reviews of technical systems.

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of local specialized system requirements (e.g., critical infrastructure systems that may not use standard information technology [IT]) for safety, performance, and reliability.

Skill in network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of an organization’s information classification program and procedures for information compromise.

Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).

Implement and integrate systems engineering methodologies into development environment.

Employ configuration management processes.

Knowledge of circuit analysis.

Knowledge of cybersecurity-enabled software products.

Skill in applying security controls.

Conduct a market analysis to identify, assess, and recommend commercial, GOTS, and open source products for use within a system and ensure recommended products are in compliance with organization’s evaluation and validation requirements.

Design and develop system administration and management functionality for privileged access users.

Design, implement, assess, and evaluate secure interfaces between information systems, physical systems, and/or embedded technologies.

Incorporates risk-driven systems maintenance updates process to address system deficiencies (periodically and out of cycle).

Skill in migrating workloads to, from, and among the different cloud computing service models.