Task ID: T0503
Task Description: Monitor external data sources (e.g., cyber defense vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defense threat condition and determine which security issues may have an impact on the enterprise.
Work Roles with this Task:
- Work Role ID: PR-CDA-001Work Role Name: Cyber Defense AnalystWork Role Description: Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.Category: Protect and DefendSpecialty Area(s): Cyber Defense Analysis
- Work Role ID: PR-CIR-001Work Role Name: Cyber Defense Incident ResponderWork Role Description: Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.Category: Protect and DefendSpecialty Area(s): Incident Response