OG-WRL-004

Cybersecurity Curriculum Development

Responsible for developing, planning, coordinating, and evaluating cybersecurity awareness, training, or education content, methods, and techniques based on instructional needs and requirements.

Task statements

T0437: Correlate training and learning to business or mission requirements
T1020: Determine the operational and safety impacts of cybersecurity lapses
T1025: Implement organizational training and education policies and procedures
T1036: Integrate leadership priorities
T1038: Integrate organization objectives in intelligence collection
T1054: Scope analysis reports to various audiences that accounts for data sharing classification restrictions
T1311: Design and execute exercise scenarios
T1334: Produce cybersecurity instructional materials
T1335: Promote cybersecurity awareness to management
T1336: Verify the inclusion of sound cybersecurity principles in the organization's vision and goals
T1337: Identify system and network capabilities
T1411: Develop technical training curriculum and resources
T1412: Deliver technical training to customers
T1413: Develop training modules and classes
T1414: Develop training assignments
T1415: Develop training evaluations
T1416: Develop grading and proficiency standards
T1417: Create learner development, training, and remediation plans
T1438: Determine effectiveness of instruction and training
T1446: Conduct learning needs assessments
T1447: Identify training requirements
T1451: Create interactive learning exercises
T1462: Develop cybersecurity training policies and procedures
T1463: Develop cybersecurity curriculum goals and objectives
T1475: Develop instructional strategies
T1476: Promote awareness of cybersecurity policy and strategy among management
T1608: Perform periodic reviews of learning materials and courses for accuracy and currency
T1870: Create privacy training materials
T1871: Prepare privacy awareness communications
T1873: Deliver privacy awareness trainings

Knowledge statements

K0643: Knowledge of virtual learning environments
K0654: Knowledge of target audience requirements
K0659: Knowledge of information privacy technologies
K0674: Knowledge of computer networking protocols
K0675: Knowledge of risk management processes
K0676: Knowledge of cybersecurity laws and regulations
K0677: Knowledge of cybersecurity policies and procedures
K0678: Knowledge of privacy laws and regulations
K0679: Knowledge of privacy policies and procedures
K0680: Knowledge of cybersecurity principles and practices
K0681: Knowledge of privacy principles and practices
K0682: Knowledge of cybersecurity threats
K0683: Knowledge of cybersecurity vulnerabilities
K0684: Knowledge of cybersecurity threat characteristics
K0718: Knowledge of network communications principles and practices
K0736: Knowledge of information technology (IT) security principles and practices
K0743: Knowledge of new and emerging technologies
K0751: Knowledge of system threats
K0752: Knowledge of system vulnerabilities
K0770: Knowledge of system administration principles and practices
K0773: Knowledge of telecommunications principles and practices
K0792: Knowledge of network configurations
K0801: Knowledge of cognitive domain models and frameworks
K0805: Knowledge of command-line tools and techniques
K0812: Knowledge of digital communication systems and software
K0818: Knowledge of new and emerging cybersecurity risks
K0825: Knowledge of threat vector characteristics
K0831: Knowledge of network attack vectors
K0837: Knowledge of hardening tools and techniques
K0865: Knowledge of data classification standards and best practices
K0866: Knowledge of data classification tools and techniques
K0881: Knowledge of learning assessment tools and techniques
K0885: Knowledge of instructional design principles and practices
K0886: Knowledge of instructional design models and frameworks
K0887: Knowledge of training policies and procedures
K0888: Knowledge of Bloom's Taxonomy learning levels
K0889: Knowledge of learning management system (LMS) systems and software
K0890: Knowledge of learning modes
K0893: Knowledge of training systems and software
K0905: Knowledge of media production tool and techniques
K0910: Knowledge of needs assessment principles and practices
K0923: Knowledge of operating system structures and internals
K0934: Knowledge of data classification policies and procedures
K0983: Knowledge of computer networking principles and practices
K1014: Knowledge of network security principles and practices
K1032: Knowledge of satellite-based communication systems and software
K1083: Knowledge of cybersecurity competitions
K1088: Knowledge of knowledge management tools and techniques
K1183: Knowledge of organizational cybersecurity policies and procedures

Skill statements

S0066: Skill in identifying gaps in technical capabilities
S0385: Skill in communicating complex concepts
S0391: Skill in creating technical documentation
S0395: Skill in developing instructional materials
S0424: Skill in executing command line tools
S0430: Skill in collaborating with others
S0431: Skill in applying critical thinking
S0467: Skill in conducting an education needs assessment
S0468: Skill in conducting a training needs assessment
S0543: Skill in scanning for vulnerabilities
S0544: Skill in recognizing vulnerabilities
S0601: Skill in developing curricula
S0602: Skill in teaching training programs
S0610: Skill in communicating effectively
S0628: Skill in developing learning activities
S0686: Skill in performing risk assessments
S0712: Skill in evaluating data source quality
S0713: Skill in evaluating information quality
S0744: Skill in performing technical writing
S0756: Skill in incorporating feedback
S0800: Skill in analyzing organizational patterns and relationships
S0807: Skill in solving problems

Source: Workforce Framework for Cybersecurity (NICE Framework) (NIST SP 800-181 Rev 1) (Version: 1.0.0)