Skill ID: S0147

Skill Description: Skill in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.). 

Work Roles with this Skill:

• Work Role ID: OM-ANA-001
  Work Roles: Systems Security Analyst
  Work Role Description: Responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.
  Category: Operate and Maintain
  Specialty Area(s): Systems Analysis
• Work Role ID: PR-CDA-001
  Work Roles: Cyber Defense Analyst
  Work Role Description: Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
  Category: Protect and Defend
  Specialty Area(s): Cyber Defense Analysis
• Work Role ID: SP-RSK-002
  Work Roles: Security Control Assessor
  Work Role Description: Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).
  Category: Securely Provision
  Specialty Area(s): Risk Management