Ability ID: A0092
Ability Description: Ability to identify/describe target vulnerability.
Work Roles with this Ability:
- Work Role ID: AN-EXP-001Work Roles: Exploitation AnalystWork Role Description: Collaborates to identify access and collection gaps that can be satisfied through cyber collection and/or preparation activities. Leverages all authorized resources and analytic techniques to penetrate targeted networks.Category: AnalyzeSpecialty Area(s): Exploitation Analysis
- Work Role ID: SP-RSK-002Work Roles: Security Control AssessorWork Role Description: Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).Category: Securely ProvisionSpecialty Area(s): Risk Management