Task ID: T0175

Task Description: Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs).

Work Roles with this Task:

• Work Role ID: IN-FOR-002
  Work Roles: Cyber Defense Forensics Analyst
  Work Role Description: Analyzes digital evidence and investigates computer security incidents to derive useful information in support of system/network vulnerability mitigation.
  Category: Investigate
  Specialty Area(s): Digital Forensics
• Work Role ID: PR-CIR-001
  Work Roles: Cyber Defense Incident Responder
  Work Role Description: Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.
  Category: Protect and Defend
  Specialty Area(s): Incident Response