1. Workforce Development
  2. NICE Workforce Framework for Cybersecurity (NICE Framework)
  3. Knowledge Search
  4. K0990

Knowledge statement ID: K0990

Knowledge of cyber operations principles and practices

Work roles with this Knowledge

  • Cybersecurity Policy and Planning

    NICE Framework ID: OG-WRL-002

    Responsible for developing and maintaining cybersecurity plans, strategy, and policy to support and align with organizational cybersecurity initiatives and regulatory compliance.

  • Cybersecurity Workforce Management

    NICE Framework ID: OG-WRL-003

    Responsible for developing cybersecurity workforce plans, assessments, strategies, and guidance, including cybersecurity-related staff training, education, and hiring processes. Makes adjustments in response to or in anticipation of changes to cybersecurity-related policy, technology, and staffing needs and requirements. Authors mandated workforce planning strategies to maintain compliance with legislation, regulation, and policy.

  • Cybersecurity Legal Advice

    NICE Framework ID: OG-WRL-006

    Responsible for providing cybersecurity legal advice and recommendations, including monitoring related legislation and regulations.

  • Executive Cybersecurity Leadership

    NICE Framework ID: OG-WRL-007

    Responsible for establishing vision and direction for an organization's cybersecurity operations and resources and their impact on digital and physical spaces. Possesses authority to make and execute decisions that impact an organization broadly, including policy approval and stakeholder engagement.

  • Privacy Compliance

    NICE Framework ID: OG-WRL-008

    Responsible for developing and overseeing an organization’s privacy compliance program and staff, including establishing and managing privacy-related governance, policy, and incident response needs.

  • Security Control Assessment

    NICE Framework ID: OG-WRL-012

    Responsible for conducting independent comprehensive assessments of management, operational, and technical security controls and control enhancements employed within or inherited by a system to determine their overall effectiveness.

  • Systems Authorization

    NICE Framework ID: OG-WRL-013

    Responsible for operating an information system at an acceptable level of risk to organizational operations, organizational assets, individuals, other organizations, and the nation.

  • Threat Analysis

    NICE Framework ID: PD-WRL-006

    Responsible for collecting, processing, analyzing, and disseminating cybersecurity threat assessments. Develops cybersecurity indicators to maintain awareness of the status of the highly dynamic operating environment.