* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of data administration and data standardization policies and standards.

Knowledge of data backup, types of backups (e.g., full, incremental), and recovery concepts and tools.

Knowledge of database management systems, query languages, table relationships, and views.

Knowledge of network access, identity, and access management (e.g., public key infrastructure [PKI]).

Knowledge of policy-based and risk adaptive access controls.

Knowledge of query languages such as SQL (structured query language).

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of the characteristics of physical and virtual data storage media.

Skill in establishing data security controls.

Skill in maintaining databases.

Skill in optimizing database performance.

Analyze and plan for anticipated changes in data capacity requirements.

Install and configure database management systems and software.

Maintain database management systems software.

Monitor and maintain databases to ensure optimal performance.

Perform backup and recovery of databases to ensure data integrity.

Provide recommendations on new database technologies and architectures.

Knowledge of database theory.

Knowledge of emerging security issues, risks, and vulnerabilities.

Knowledge of current and emerging data encryption (e.g., Column and Tablespace Encryption, file and disk encryption) security features in databases, including built-in cryptographic key management features.

Knowledge of database access application programming interfaces (APIs) (e.g., Java Database Connectivity [JDBC]).

Performs configuration management, problem management, capacity management, and financial management for databases and data management systems.

Supports incident management, service level management, change management, release management, continuity management, and availability management for databases and data management systems.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Identify data consolidation opportunities across database systems, including data sharing and access between business lines.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of how to collect, store, and monitor data.

Knowledge of data mining and data warehousing principles.

Implement data mining and data warehousing applications.

Knowledge of the organization’s core business/mission processes.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of current and emerging data remediation security features in databases.

Skill in migrating workloads to, from, and among the different cloud computing service models.

Knowledge of laws, regulations, and policies related to AI, data security/privacy, and use of publicly procured data for government.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of organization’s enterprise information security architecture system.

Ability to build architectures and frameworks.

Knowledge of network access, identity, and access management (e.g., public key infrastructure [PKI]).

Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of the enterprise information technology (IT) architectural concepts and patterns to include baseline and target architectures.

Knowledge of integrating the organization’s goals and objectives into the architecture.

Knowledge of the systems engineering process.

Analyze user needs and requirements to plan architecture.

Document and update as necessary all definition and architecture activities.

Ensure acquired or developed system(s) and architecture(s) are consistent with organization’s cybersecurity architecture guidelines.

Plan implementation strategy to ensure enterprise components can be integrated and aligned.

Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of database systems.

Knowledge of organization’s evaluation and validation requirements.

Knowledge of electrical engineering as applied to computer architecture, including circuit boards, processors, chips, and associated computer hardware.

Knowledge of embedded systems.

Knowledge of system fault tolerance methodologies.

Knowledge of how system components are installed, integrated, and optimized.

Knowledge of risk assessments and authorization per Risk Management Framework processes.

Knowledge of industry-standard and organizationally accepted analysis principles and methods.

Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Knowledge of Information Theory (e.g., source coding, channel coding, algorithm complexity theory, and data compression).

Knowledge of risk management processes and requirements per the Risk Management Framework (RMF).

Knowledge of cybersecurity methods, such as firewalls, demilitarized zones, and encryption.

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of operating systems.

Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of parallel and distributed computing concepts.

Knowledge of the DoD implementation of the Risk Management Framework (RMF) to include processes.

Knowledge of configuration management techniques.

Knowledge of key concepts in security management (e.g., Release Management, Patch Management).

Knowledge of security system design tools, methods, and techniques.

Knowledge of N-tiered typologies including server and client operating systems.

Knowledge of software engineering.

Knowledge of systems testing and evaluation methods.

Ability to execute technology integration processes.

Knowledge of key telecommunications concepts (e.g., Routing Algorithms, Fiber Optics Systems Link Budgeting, Add/Drop Multiplexers).

Skill in applying and incorporating information technologies into proposed solutions.

Skill in designing the integration of hardware and software solutions.

Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

Knowledge in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

Skill in design modeling and building use cases (e.g., unified modeling language).

Captures and integrates essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event.

Define appropriate levels of system availability based on critical system functions and ensure system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration.

Develop enterprise architecture required to meet user needs.

Evaluate factors such as reporting formats required, cost constraints, and need for security restrictions to determine hardware configuration.

Identify and prioritize critical business functions in collaboration with organizational stakeholders.

Integrate results regarding the identification of gaps in security architecture.

Provide advice on project costs, design concepts, or design changes.

Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).

Translate proposed capabilities into technical requirements.

Ability to apply the methods, standards, and approaches for describing, analyzing, and documenting an organization’s enterprise information technology (IT) architecture (e.g., Open Group Architecture Framework [TOGAF], Department of Defense Architecture Framework [DoDAF], Federal Enterprise Architecture Framework [FEAF]).

Document how the implementation of a new system or new interface between systems impacts the current and target environment including but not limited to security posture.

Integrate key management functions as related to cyberspace.

Knowledge of program protection planning to include information technology (IT) supply chain security/risk management policies, anti-tampering techniques, and requirements.

Knowledge of local specialized system requirements (e.g., critical infrastructure/control systems that may not use standard information technology [IT]) for safety, performance, and reliability).

Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of use cases related to collaboration and content synchronization across platforms (e.g., Mobile, PC, Cloud).

Knowledge of an organization’s information classification program and procedures for information compromise.

Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).

Develop data management capabilities (e.g., cloud based, centralized cryptographic key management) to include support to the mobile workforce.

Analyze candidate architectures, allocate security services, and select security mechanisms.

Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents.

Write detailed functional specifications that document the architecture development process.

Knowledge of circuit analysis.

Knowledge of confidentiality, integrity, and availability requirements.

Knowledge of cybersecurity-enabled software products.

Knowledge of various types of computer architectures.

Ability to apply an organization’s goals and objectives to develop and maintain architecture.

Ability to optimize systems to meet enterprise performance requirements.

Knowledge of multi-level/security cross domain solutions.

Skill in the use of design methods.

Ability to apply cybersecurity strategy to cloud computing service and deployment models, identifying proper architecture for different operating environments.

Skill in designing or implementing cloud computing deployment models.

Skill in migrating workloads to, from, and among the different cloud computing service models.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of the capabilities and functionality associated with various content creation technologies (e.g., wikis, social networking, blogs).

Knowledge of the capabilities and functionality associated with various technologies for organizing and managing information (e.g., databases, bookmarking engines).

Knowledge of the capabilities and functionality of various collaborative technologies (e.g., groupware, SharePoint).

Manage the indexing/cataloguing, storage, and access of explicit organizational knowledge (e.g., hard copy documents, digital files).

Construct access paths to suites of information (e.g., link pages) to facilitate access by end-users.

Knowledge of database theory.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of an organization’s information classification program and procedures for information compromise.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Ability to match the appropriate knowledge repository technology for a given application or environment.

Knowledge of cyber defense and vulnerability assessment tools, including open source tools, and their capabilities.

Skill in conducting information searches.

Skill in conducting knowledge mapping (e.g., map of knowledge repositories).

Skill in the measuring and reporting of intellectual capital.

Skill in using knowledge management technologies.

Knowledge of the principal methods, procedures, and techniques of gathering information and producing, reporting, and sharing information.

Design, build, implement, and maintain a knowledge management framework that provides end-users access to the organization’s intellectual capital.

Develop an understanding of the needs and requirements of information end-users.

Monitor and report the usage of knowledge management assets and resources.

Plan and manage the delivery of knowledge management projects.

Promote knowledge sharing between information owners/users through an organization’s operational processes and systems.

Provide recommendations on data structures and databases that ensure correct and quality production of reports/management information.

Knowledge of data mining techniques.

Knowledge of the organization’s core business/mission processes.

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Knowledge of data classification standards and methodologies based on sensitivity and other risk factors.

Knowledge of use cases related to collaboration and content synchronization across platforms (e.g., Mobile, PC, Cloud).

Leads efforts to promote the organization’s use of knowledge management and information sharing.

Knowledge of taxonomy and semantic ontology theory.

Knowledge of communication methods, principles, and concepts (e.g., crypto, dual hubs, time multiplexers) that support the network infrastructure.

Ability to operate network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware.

Knowledge of capabilities and applications of network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of organization’s LAN/WAN pathways.

Knowledge of cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data.

Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).

Knowledge of local area and wide area networking principles and concepts including bandwidth management.

Knowledge of measures or indicators of system performance and availability.

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of remote access technology concepts.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of server administration and systems engineering theories, concepts, and methods.

Knowledge of key telecommunications concepts (e.g., Routing Algorithms, Fiber Optics Systems Link Budgeting, Add/Drop Multiplexers).

Knowledge of Virtual Private Network (VPN) security.

Skill in analyzing network traffic capacity and performance characteristics.

Skill in implementing and testing network infrastructure contingency and recovery plans.

Skill in establishing a routing schema.

Skill in implementing, maintaining, and improving established network security practices.

Skill in installing, configuring, and troubleshooting LAN and WAN components such as routers, hubs, and switches.

Skill in sub-netting.

Knowledge of basic concepts, terminology, and operations of a wide range of communications media (computer and telephone networks, satellite, fiber, wireless).

Knowledge of common network tools (e.g., ping, traceroute, nslookup).

Ability to operate common network tools (e.g., ping, traceroute, nslookup).

Knowledge of different types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN).

Ability to execute OS command line (e.g., ipconfig, netstat, dir, nbtstat).

Configure and optimize network hubs, routers, and switches (e.g., higher-level protocols, tunneling).

Develop and implement network backup and recovery procedures.

Diagnose network connectivity problem.

Install and maintain network infrastructure device operating system software (e.g., IOS, firmware).

Install or replace network hubs, routers, and switches.

Monitor network capacity and performance.

Patch network vulnerabilities to ensure information is safeguarded against outside parties.

Test and maintain network infrastructure including software and hardware devices.

Skill in configuring and utilizing computer protection components (e.g., hardware firewalls, servers, routers, as appropriate).

Skill in securing network communications.

Skill in protecting a network against malware.

Knowledge of web filtering technologies.

Knowledge of the capabilities of different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts).

Ability to operate different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts).

Knowledge of the range of existing networks (e.g., PBX, LANs, WANs, WIFI, SCADA).

Skill in configuring and utilizing network protection components (e.g., Firewalls, VPNs, network intrusion detection systems).

Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Ability to operate the organization’s LAN/WAN pathways.

Ability to monitor measures or indicators of system performance and availability.

Ability to monitor traffic flows across the network.

Skill in using network management tools (e.g., simple network management protocol (SNMP), (GrassMarlin)) to analyze network traffic patterns (e.g., including control system network analysis).​

Ensure application of security patches for commercial products integrated into system design meet the timelines dictated by the management authority for the intended operational environment.

Implement new system design procedures, test procedures, and quality standards.

Integrate new systems into existing network architecture.

Provide feedback on network requirements, including network architecture and infrastructure.

Knowledge of Wi-Fi.

Knowledge of Voice over IP (VoIP).

Knowledge of the common attack vectors on the network layer.

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of symmetric key rotation techniques and concepts.

Knowledge of an organization’s information classification program and procedures for information compromise.

Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).

Ability to apply cybersecurity strategy to cloud computing service and deployment models, identifying proper architecture for different operating environments.

Ability to determine the best cloud deployment model for the appropriate operating environment.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of new and emerging information technology (IT) and cybersecurity technologies.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of system life cycle management principles, including software security and usability.

Skill in applying the systems engineering process.

Research current technology to understand capabilities of required system or network.

Research and evaluate available technologies and standards to meet customer requirements.

Identify cyber capabilities strategies for custom hardware and software development based on mission requirements.

Collaborate with stakeholders to identify and/or develop appropriate solutions technology.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.

Knowledge of application vulnerabilities.

Knowledge of cryptography and cryptographic key management concepts.

Knowledge of penetration testing principles, tools, and techniques.

Skill in applying and incorporating information technologies into proposed solutions.

Skill in creating and utilizing mathematical or statistical models.

Skill in designing the integration of technology processes and solutions, including legacy systems and modern programming languages.

Knowledge of industry technologies and how differences affect exploitation/vulnerabilities.

Skill in using scientific rules and methods to solve problems.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of local specialized system requirements (e.g., critical infrastructure/control systems that may not use standard information technology [IT]) for safety, performance, and reliability).

Knowledge of relevant laws, policies, procedures, or governance related to critical infrastructure.

Knowledge of operations security.

Knowledge of software reverse engineering techniques.

Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

Design and develop new tools/technologies as related to cybersecurity.

Troubleshoot prototype design and process issues throughout the product design, development, and pre-launch phases.

Identify functional- and security-related features to find opportunities for new capability development to exploit or mitigate vulnerabilities.

Knowledge of Cloud-based knowledge management technologies and concepts related to security, governance, procurement, and administration.

Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for PCI and PII compliance, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).

Knowledge of industry standard security models.

Develop data management capabilities (e.g., cloud based, centralized cryptographic key management) to include support to the mobile workforce.

Ability to prepare and present briefings.

Ability to produce technical documentation.

Ability to determine the best cloud deployment model for the appropriate operating environment.

Skill in designing or implementing cloud computing deployment models.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of measures or indicators of system performance and availability.

Knowledge of performance tuning tools and techniques.

Knowledge of principles and methods for integrating system components.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of systems administration concepts.

Skill in correcting physical and technical problems that impact system/server performance.

Skill in monitoring and optimizing system/server performance.

Skill in recovering failed systems/servers.

Skill in operating system administration.

Knowledge of virtualization technologies and virtual machine development and maintenance.

Conduct functional and connectivity testing to ensure continuing operability.

Develop and document systems administration standard operating procedures.

Comply with organization systems administration standard operating procedures.

Implement and enforce local network usage policies and procedures.

Maintain baseline system security according to organizational policies.

Manage accounts, network rights, and access to systems and equipment.

Manage system/server resources including performance, capacity, availability, serviceability, and recoverability.

Monitor and maintain system/server configuration.

Perform repairs on faulty system/server hardware.

Plan, execute, and verify data redundancy and system recovery procedures.

Troubleshoot hardware/software interface and interoperability problems.

Knowledge of organizational information technology (IT) user security policies (e.g., account creation, password rules, access control).

Knowledge of basic system administration, network, and operating system hardening techniques.

Install, update, and troubleshoot systems/servers.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).

Knowledge of local area and wide area networking principles and concepts including bandwidth management.

Knowledge of network access, identity, and access management (e.g., public key infrastructure [PKI]).

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of systems engineering theories, concepts, and methods.

Knowledge of server and client operating systems.

Knowledge of system/server diagnostic tools and fault identification techniques.

Knowledge of the enterprise information technology (IT) architecture.

Knowledge of the type and frequency of routine maintenance needed to keep equipment functioning properly.

Knowledge of Virtual Private Network (VPN) security.

Skill in conducting system/server planning, management, and maintenance.

Skill in configuring and optimizing software.

Skill in diagnosing connectivity problems.

Skill in troubleshooting failed system components (i.e., servers)

Skill in identifying and anticipating system/server performance, availability, capacity, or configuration problems.

Skill in installing system and component upgrades.

Skill in maintaining directory services.

Knowledge of file system implementations (e.g., New Technology File System [NTFS], File Allocation Table [FAT], File Extension [EXT]).

Knowledge of operating system command line/prompt.

Skill in using virtual machines.

Check system hardware availability, functionality, integrity, and efficiency.

Conduct periodic system maintenance including cleaning (both physically and electronically), disk checks, routine reboots, data dumps, and testing.

Design group policies and access control lists to ensure compatibility with organizational standards, business rules, and needs.

Ensure application of security patches for commercial products integrated into system design meet the timelines dictated by the management authority for the intended operational environment.

Oversee installation, implementation, configuration, and support of system components.

Diagnose faulty system/server hardware.

Provide ongoing optimization and problem solving support.

Skill in configuring and utilizing software-based computer protection tools (e.g., software firewalls, anti-virus software, anti-spyware).

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.

Skill in interfacing with customers.

Ability to apply cybersecurity strategy to cloud computing service and deployment models, identifying proper architecture for different operating environments.

Ability to determine the best cloud deployment model for the appropriate operating environment.

Skill in designing or implementing cloud computing deployment models.

Skill in migrating workloads to, from, and among the different cloud computing service models.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of organization’s evaluation and validation requirements.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Skill in conducting test events.

Skill in designing a data analysis structure (i.e., the types of data your test must generate and how to analyze those data).

Skill in determining an appropriate level of test rigor for a given system.

Skill in developing operations-based testing scenarios.

Skill in systems integration testing.

Skill in writing test plans.

Analyze the results of software, hardware, or interoperability testing.

Determine level of assurance of developed capabilities based on test results.

Develop test plans to address specifications and requirements.

Make recommendations based on test results.

Perform developmental testing on systems under development.

Perform interoperability testing on systems exchanging electronic information with other systems.

Perform operational testing.

Record and manage test data.

Test, evaluate, and verify hardware and/or software to determine compliance with defined specifications and requirements.

Skill in evaluating test plans for applicability and completeness.

Determine scope, infrastructure, resources, and data sample size to ensure system requirements are adequately demonstrated.

Create auditable evidence of security measures.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Validate specifications and requirements for testability.

Ability to analyze test data.

Ability to collect, verify, and validate test data.

Ability to translate data and test results into evaluative conclusions.

Knowledge of Test & Evaluation processes.

Skill in conducting Test Readiness Reviews.

Skill in designing and documenting overall program Test & Evaluation strategies.

Skill in identifying Test & Evaluation infrastructure (people, ranges, tools, instrumentation) requirements.

Skill in managing test assets, test resources, and test personnel to ensure effective completion of test events.

Skill in preparing Test & Evaluation reports.

Skill in providing Test & Evaluation resource estimate.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of organization’s enterprise information security architecture system.

Knowledge of risk assessments and authorization per Risk Management Framework processes.

Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of network hardware devices and functions.

Knowledge of systems administration concepts.

Knowledge of the systems engineering process.

Skill in writing code in a currently supported programming language (e.g., Java, C++).

Apply coding and testing standards, apply security testing tools including “‘fuzzing” static-analysis code scanning tools, and conduct code reviews.

Address security implications in the software acceptance phase including completion criteria, risk acceptance and documentation, common criteria, and methods of independent testing.

Knowledge of interpreted and compiled computer languages.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of local specialized system requirements (e.g., critical infrastructure/control systems that may not use standard information technology [IT]) for safety, performance, and reliability).

Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

Knowledge of security architecture concepts and enterprise architecture reference models (e.g., Zackman, Federal Enterprise Architecture [FEA]).

Knowledge of an organization’s information classification program and procedures for information compromise.

Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).

Knowledge of cybersecurity-enabled software products.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of organization’s enterprise information security architecture system.

Knowledge of information security systems engineering principles.

Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of secure configuration management techniques.

Knowledge of software development models (e.g., Waterfall Model, Spiral Model).

Knowledge of software engineering.

Knowledge of systems testing and evaluation methods.

Knowledge of the systems engineering process.

Develop detailed design documentation for component and interface specifications to support system design and development.

Implement designs for new or existing system(s).

Ensure design and development activities are properly documented (providing a functional description of implementation) and updated as necessary.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Knowledge of various types of computer architectures.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of access authentication methods.

Knowledge of encryption algorithms.

Knowledge of cryptology.

Knowledge of database systems.

Knowledge of electrical engineering as applied to computer architecture, including circuit boards, processors, chips, and associated computer hardware.

Knowledge of embedded systems.

Knowledge of fault tolerance.

Knowledge of how system components are installed, integrated, and optimized.

Knowledge of human-computer interaction principles.

Knowledge of information systems and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Knowledge of Information Theory (e.g., source coding, channel coding, algorithm complexity theory, and data compression).

Knowledge of local area and wide area networking principles and concepts including bandwidth management.

Knowledge of mathematics, including logarithms, trigonometry, linear algebra, calculus, and statistics.

Knowledge of microprocessors.

Knowledge of network access, identity, and access management (e.g., public key infrastructure [PKI]).

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs.

Knowledge of operating systems.

Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of parallel and distributed computing concepts.

Knowledge of policy-based and risk adaptive access controls.

Knowledge of Privacy Impact Assessments.

Knowledge of process engineering concepts.

Knowledge of security management.

Knowledge of structured analysis principles and methods.

Knowledge of system design tools, methods, and techniques.

Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design.

Knowledge of system life cycle management principles.

Knowledge of key telecommunications concepts (e.g., Routing Algorithms, Fiber Optics Systems Link Budgeting, Add/Drop Multiplexers).

Skill in integrating and applying policies that meet system security objectives.

Skill in creating policies that enable systems to meet performance objectives (e.g. traffic routing, SLA’s, CPU specifications).

Knowledge of countermeasure design for identified security risks.

Skill in designing countermeasures to identified security risks.

Skill in designing security controls based on cybersecurity principles and tenets.

Skill in designing the integration of hardware and software solutions.

Skill in detecting host and network based intrusions via intrusion detection technologies.

Knowledge of how detection technologies are used to detect host and network-based intrusions.

Knowledge of development and application of security system access controls.

Skill in discerning the protection needs (i.e., security controls) of information systems and networks.

Skill in evaluating the adequacy of security designs.

Skill in the use of design modeling (e.g., unified modeling language).

Skill in writing code in a currently supported programming language (e.g., Java, C++).

Analyze design constraints, analyze trade-offs and security design, and consider lifecycle support.

Build, assess, and modify product prototypes using working models or theoretical models.

Design and develop cybersecurity or cybersecurity-enabled products.

Design hardware, operating systems, or software applications to adequately address requirements.

Design or integrate appropriate data backup capabilities into overall system designs, and ensure appropriate technical and procedural processes exist for secure system backups and protected storage of backup data.

Design to security requirements to ensure requirements are met for all systems and/or applications.

Develop testing and validation procedures and documentation.

Develop architectures or system components consistent with technical specifications.

Develop Disaster Recovery and Continuity of Operations plans for systems under development and ensure testing prior to systems entering a production environment.

Develop risk mitigation strategies and cybersecurity countermeasures to address cost, performance, and security risks and to resolve vulnerabilities and recommend security changes to system or system components as needed.

Develop mitigation strategies to address cost, schedule, performance, and security risks.

Evaluate factors such as reporting formats required, cost constraints, and need for security restrictions to determine hardware configuration.

Identify components or elements, allocate comprehensive functional components to include security functions, and describe the relationships between the elements.

Identify and direct the remediation of technical problems encountered during testing and implementation of new systems (e.g., identify and find work-arounds for communication protocols that are not interoperable).

Identify and prioritize essential system functions or sub-systems required to support essential capabilities or business functions for restoration or recovery after a system failure or during a system recovery event based on overall system requirements for continuity and availability.

Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system and ensure recommended products are in compliance with organization’s evaluation and validation requirements.

Perform security reviews and identify security gaps in architecture.

Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.

Provide guidelines for implementing developed systems to customers or installation teams.

Provide input to implementation plans, standard operating procedures, maintenance documentation, and maintenance training materials

Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).

Store, retrieve, and manipulate data for analysis of system capabilities and requirements.

Provide support to test and evaluation activities.

Trace system requirements to design components and perform gap analysis.

Utilize models and simulations to analyze or predict system performance under different operating conditions.

Verify stability, interoperability, portability, and/or scalability of system architecture.

Knowledge of interpreted and compiled computer languages.

Analyze user needs and requirements to plan and conduct system development.

Collaborate with cybersecurity professionals to implement cybersecurity into designs to meet specific operational needs and environmental factors (e.g., access controls, automate d applications, networked operations, high integrity and availability requirements, multilevel security/processing of multiple classification levels, and processing Sensitive Compartmented Information).

Develop designs to meet specific operational needs and environmental factors (e.g., access controls, automated applications, networked operations.

Skill in conducting reviews of technical systems.

Knowledge of Personal Health Information (PHI) data security standards.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of local specialized system requirements (e.g., critical infrastructure systems that may not use standard information technology [IT]) for safety, performance, and reliability.

Skill in network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of an organization’s information classification program and procedures for information compromise.

Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).

Implement and integrate systems engineering methodologies into development environment.

Employ configuration management processes.

Knowledge of circuit analysis.

Knowledge of cybersecurity-enabled software products.

Skill in applying security controls.

Conduct a market analysis to identify, assess, and recommend commercial, GOTS, and open source products for use within a system and ensure recommended products are in compliance with organization’s evaluation and validation requirements.

Design and develop system administration and management functionality for privileged access users.

Design, implement, assess, and evaluate secure interfaces between information systems, physical systems, and/or embedded technologies.

Incorporates risk-driven systems maintenance updates process to address system deficiencies (periodically and out of cycle).

Skill in migrating workloads to, from, and among the different cloud computing service models.

Knowledge of applicable business processes and operations of customer organizations.

Knowledge of capabilities and requirements analysis.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Knowledge of information security systems engineering principles.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of system life cycle management principles, including software security and usability.

Knowledge of the organization’s enterprise information technology (IT) goals and objectives.

Skill in conducting capabilities and requirements analysis.

Conduct risk analysis, feasibility study, and/or trade-off analysis to develop, document, and refine functional requirements and specifications.

Consult with customers to evaluate functional requirements.

Define project scope and objectives based on customer requirements.

Translate functional requirements into technical solutions.

Ability to interpret and translate customer requirements into operational capabilities.

Develop and document User Experience (UX) requirements including information architecture and user interface requirements.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Knowledge of encryption algorithms (e.g., Internet Protocol Security [IPSEC], Advanced Encryption Standard [AES], Generic Routing Encapsulation [GRE], Internet Key Exchange [IKE], Message Digest Algorithm [MD5], Secure Hash Algorithm [SHA], Triple Data Encryption Standard [3DES]).

Knowledge of cryptography and cryptographic key management concepts.

Knowledge of fault tolerance.

Knowledge of how system components are installed, integrated, and optimized.

Knowledge of cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data.

Knowledge of industry-standard and organizationally accepted analysis principles and methods.

Knowledge of Information Theory (e.g., source coding, channel coding, algorithm complexity theory, and data compression).

Knowledge of information technology (IT) architectural concepts and frameworks.

Knowledge of microprocessors.

Knowledge of network access, identity, and access management (e.g., public key infrastructure [PKI]).

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs.

Knowledge of current and emerging cyber technologies.

Knowledge of operating systems.

Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of parallel and distributed computing concepts.

Knowledge of Privacy Impact Assessments.

Knowledge of process engineering concepts.

Knowledge of secure configuration management techniques.

Knowledge of key concepts in security management (e.g., Release Management, Patch Management).

Knowledge of system design tools, methods, and techniques, including automated systems analysis and design tools.

Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design.

Knowledge of systems testing and evaluation methods.

Knowledge of key telecommunications concepts (e.g., Routing Algorithms, Fiber Optics Systems Link Budgeting, Add/Drop Multiplexers).

Knowledge of the systems engineering process.

Skill in applying and incorporating information technologies into proposed solutions.

Skill in applying confidentiality, integrity, and availability principles.

Skill in applying organization-specific systems analysis principles and techniques.

Skill in design modeling and building use cases (e.g., unified modeling language).

Coordinate with systems architects and developers, as needed, to provide oversight in the development of design solutions.

Define baseline security requirements in accordance with applicable guidelines.

Develop and document requirements, capabilities, and constraints for design procedures and processes.

Develop cost estimates for new or modified system(s).

Evaluate factors such as reporting formats required, cost constraints, and need for security restrictions to determine hardware configuration.

Integrate and align information security and/or cybersecurity policies to ensure system analysis meets security requirements.

Manage the information technology (IT) planning process to ensure that developed solutions meet customer requirements.

Oversee and make recommendations regarding configuration management.

Perform needs analysis to determine opportunities for new and improved business process solutions.

Prepare use cases to justify the need for specific information technology (IT) solutions.

Skill in conducting reviews of systems.

Develop and document supply chain risks for critical system elements, as appropriate.

Knowledge of critical information technology (IT) procurement requirements.

Knowledge of functionality, quality, and security requirements and how these will apply to specific items of supply (i.e., elements and processes).

Knowledge of applicable laws (e.g., Electronic Communications Privacy Act, Foreign Intelligence Surveillance Act, Protect America Act, search and seizure laws, civil liberties and privacy laws), statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures relevant to work performed.

Knowledge of information technology (IT) supply chain security and risk management policies, requirements, and procedures.

Knowledge of local specialized system requirements (e.g., critical infrastructure/control systems that may not use standard information technology [IT]) for safety, performance, and reliability).

Knowledge of relevant laws, policies, procedures, or governance related to critical infrastructure.

Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).

Knowledge of an organization’s information classification program and procedures for information compromise.

Design and document quality standards.

Document a system’s purpose and preliminary system security concept of operations.

Ensure that all systems components can be integrated and aligned (e.g., procedures, databases, policies, software, and hardware).

Knowledge of successful capabilities to identify the solutions to less common and more complex system problems.

* Knowledge of computer networking concepts and protocols, and network security methodologies.

Knowledge of procedures used for documenting and querying reported incidents, problems, and events.

Knowledge of measures or indicators of system performance and availability.

* Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

Knowledge of systems administration concepts.

Knowledge of the operations and processes for incident, problem, and event management.

Knowledge of IT system operation, maintenance, and security needed to keep equipment functioning properly.

Skill in conducting research for troubleshooting novel client-level problems.

Skill in identifying possible causes of degradation of system performance or availability and initiating actions needed to mitigate this degradation.

Skill in configuring and validating network workstations and peripherals in accordance with approved standards and/or specifications.

Knowledge of the basic operation of computers.

Skill in using the appropriate tools for repairing software, hardware, and peripheral equipment of a system.

Knowledge of basic physical computer components and architectures.

Knowledge of electronic devices (e.g., computer systems/components, access control devices, digital cameras, electronic organizers, hard drives, memory cards, modems, network components, printers, removable storage devices, scanners, telephones, copiers, credit card skimmers, facsimile machines, global positioning systems [GPSs]).

Diagnose and resolve customer reported system incidents, problems, and events.

Install and configure hardware, software, and peripheral equipment for system users in accordance with organizational standards.

Administer accounts, network rights, and access to systems and equipment.

Monitor and report client-level computer system performance.

Troubleshoot system hardware and software.

Knowledge of an organization’s information classification program and procedures for information compromise.

* Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

* Knowledge of cybersecurity principles.

* Knowledge of cyber threats and vulnerabilities.

Ability to accurately define incidents, problems, and events in the trouble ticketing system.

Knowledge of industry best practices for service desk.

Knowledge of organizational security policies.

Knowledge of remote access processes, tools, and capabilities related to customer support.

* Knowledge of specific operational impacts of cybersecurity lapses.

* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).

* Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Make recommendations based on trend analysis for enhancements to software and hardware solutions to enhance customer experience.

Perform asset management/inventory of information technology (IT) resources.

Develop a trend analysis and impact report.

Knowledge of Personally Identifiable Information (PII) data security standards.

Knowledge of Payment Card Industry (PCI) data security standards.

Knowledge of Personal Health Information (PHI) data security standards.

Analyze incident data for emerging trends.

Develop and deliver technical training to educate others or meet customer needs.

Maintain incident tracking and solution database.

Ability to develop, update, and/or maintain standard operating procedures (SOPs).