Task ID: T0161
Task Description: Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security.
Work Roles with this Task:
- Work Role ID: PR-CIR-001Work Roles: Cyber Defense Incident ResponderWork Role Description: Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.Category: Protect and DefendSpecialty Area(s): Incident Response