Attention: CISA Learning is now available! If you are an EXTERNAL (non-CISA) user access the new system using this url: CISA Learning. The Federal Virtual Training Environment (FedVTE) has been permanently decommissioned and replaced by CISA Learning. Please reference the CISA Learning page for the latest information. Please note: CISA Users (staff and contractors) should access CISA Learning through the internal site. You should have received an email on December 4, 2024, titled “CISA Learning is LIVE!” with more information.

CI-WRL-005

Multi-Disciplined Language Analysis

Responsible for applying language and cultural expertise with target, threat, and technical knowledge to process, analyze, and disseminate intelligence information derived from language, voice, and/or graphic materials. Creates and maintains language-specific databases and working aids to support cyber action execution and ensure critical knowledge sharing. Provides subject matter expertise in foreign language-intensive or interdisciplinary projects.

Task statements

T0650: Determine what technologies are used by a given target
T0718: Identify intelligence gaps and shortfalls
T0845: Identify cyber threat tactics and methodologies
T0858: Identify foreign language terminology within computer programs (e.g., comments, variable names)
T1020: Determine the operational and safety impacts of cybersecurity lapses
T1032: Determine cyber operation objectives
T1638: Recommend cyber operation targets
T1661: Assess all-source data for intelligence or vulnerability value
T1662: Identify information essential to intelligence collection operations
T1677: Develop intelligence collection plans
T1737: Develop intelligence collection strategies
T1743: Identify information collection gaps
T1745: Identify gaps in understanding of target technology
T1835: Determine if intelligence requirements and collection plans are accurate and up-to-date
T1837: Advise managers and operators on language and cultural issues
T1838: Assess target motivation
T1839: Conduct all-source target research
T1840: Analyze target communications
T1841: Conduct quality reviews of transcribed or translated materials
T1842: Identify metadata patterns
T1843: Identify metadata anomalies
T1844: Identify metadata events
T1845: Identify foreign languages and dialects in initial source data
T1846: Develop language processing tools
T1847: Prepare social network analysis documents
T1848: Scan target graphic and audio language materials
T1849: Communicate critical or time-sensitive information
T1850: Transcribe target audio language materials
T1851: Translate target graphic language materials
T1852: Translate target audio language materials

Knowledge statements

K0359: Knowledge of approved intelligence dissemination processes
K0476: Knowledge of language processing tools and techniques
K0540: Knowledge of target communication tools and techniques
K0674: Knowledge of computer networking protocols
K0675: Knowledge of risk management processes
K0676: Knowledge of cybersecurity laws and regulations
K0677: Knowledge of cybersecurity policies and procedures
K0678: Knowledge of privacy laws and regulations
K0679: Knowledge of privacy policies and procedures
K0680: Knowledge of cybersecurity principles and practices
K0681: Knowledge of privacy principles and practices
K0682: Knowledge of cybersecurity threats
K0683: Knowledge of cybersecurity vulnerabilities
K0684: Knowledge of cybersecurity threat characteristics
K0689: Knowledge of network infrastructure principles and practices
K0695: Knowledge of programming principles and practices
K0710: Knowledge of enterprise cybersecurity architecture principles and practices
K0718: Knowledge of network communications principles and practices
K0751: Knowledge of system threats
K0752: Knowledge of system vulnerabilities
K0773: Knowledge of telecommunications principles and practices
K0784: Knowledge of insider threat laws and regulations
K0785: Knowledge of insider threat tools and techniques
K0791: Knowledge of defense-in-depth principles and practices
K0792: Knowledge of network configurations
K0793: Knowledge of file extensions
K0800: Knowledge of evidence admissibility laws and regulations
K0812: Knowledge of digital communication systems and software
K0816: Knowledge of front-end intelligence collection systems and software
K0819: Knowledge of import and export control laws and regulations
K0820: Knowledge of supply chain risks
K0821: Knowledge of federal agency roles and responsibilities
K0844: Knowledge of cyber attack stages
K0845: Knowledge of cyber intrusion activity phases
K0855: Knowledge of debugging tools and techniques
K0865: Knowledge of data classification standards and best practices
K0866: Knowledge of data classification tools and techniques
K0892: Knowledge of cyber defense laws and regulations
K0915: Knowledge of network architecture principles and practices
K0925: Knowledge of wireless communication tools and techniques
K0926: Knowledge of signal jamming tools and techniques
K0934: Knowledge of data classification policies and procedures
K0962: Knowledge of targeting laws and regulations
K0963: Knowledge of exploitation laws and regulations
K0965: Knowledge of language analysis tools and techniques
K0966: Knowledge of voice analysis tools and techniques
K0967: Knowledge of graphic materials analysis tools and techniques
K0981: Knowledge of intelligence collection systems and software
K0983: Knowledge of computer networking principles and practices
K0984: Knowledge of web security principles and practices
K0986: Knowledge of target selection criticality factors
K0987: Knowledge of target selection vulnerability factors
K0990: Knowledge of cyber operations principles and practices
K1004: Knowledge of reporting policies and procedures
K1010: Knowledge of intelligence policies and procedures
K1014: Knowledge of network security principles and practices
K1016: Knowledge of code obfuscation tools and techniques
K1019: Knowledge of operations security (OPSEC) principles and practices
K1028: Knowledge of target development principles and practices
K1034: Knowledge of target language
K1039: Knowledge of target cultural references
K1043: Knowledge of target characteristics
K1051: Knowledge of collection data flow from origin into repositories and tools
K1053: Knowledge of the collection process feedback cycle
K1056: Knowledge of language analysis principles and practices
K1057: Knowledge of Interactive On-Net (ION) operator roles and responsibilities
K1064: Knowledge of Request For Information (RFI) processes
K1100: Knowledge of analytical tools and techniques
K1105: Knowledge of non-attributable networks
K1108: Knowledge of traceroute tools and techniques
K1128: Knowledge of customer requirements
K1162: Knowledge of foreign languages and dialects
K1229: Knowledge of target communication network characteristics
K1230: Knowledge of target communications tools and techniques

Skill statements

S0283: Skill in transcribing target language communications
S0385: Skill in communicating complex concepts
S0430: Skill in collaborating with others
S0503: Skill in selecting targets
S0504: Skill in identifying vulnerabilities
S0506: Skill in identifying customer information needs
S0507: Skill in collecting terminal or environment data
S0512: Skill in extracting metadata
S0518: Skill in assessing threat actors
S0524: Skill in implementing network security
S0533: Skill in developing target communication profiles
S0537: Skill in designing wireless communications systems
S0539: Skill in developing transcripts
S0558: Skill in developing algorithms
S0559: Skill in performing data structure analysis
S0579: Skill in preparing reports
S0610: Skill in communicating effectively
S0689: Skill in performing language processing tool analysis
S0690: Skill in performing midpoint collection data analysis
S0692: Skill in developing target assessments
S0695: Skill in performing Open Source Intelligence (OSINT) research
S0697: Skill in analyzing social networks
S0704: Skill in performing target analysis
S0710: Skill in evaluating metadata
S0711: Skill in interpreting metadata
S0712: Skill in evaluating data source quality
S0713: Skill in evaluating information quality
S0717: Skill in identifying target network characteristics
S0719: Skill in identifying intelligence gaps
S0720: Skill in identifying regional languages and dialects
S0722: Skill in interpreting traceroute results
S0724: Skill in managing client relationships
S0747: Skill in translating languages
S0752: Skill in evading network detection
S0755: Skill in reconstructing a network
S0791: Skill in presenting to an audience
S0827: Skill in communicating with internal and external stakeholders
S0845: Skill in mapping networks
S0847: Skill in performing all-source intelligence analysis
S0851: Skill in performing cultural analysis
S0854: Skill in performing data analysis
S0865: Skill in performing language analysis
S0869: Skill in performing metadata analysis
S0871: Skill in performing network analysis
S0874: Skill in performing network traffic analysis
S0881: Skill in performing social network analysis
S0888: Skill in performing target communications analysis

Source: Workforce Framework for Cybersecurity (NICE Framework) (NIST SP 800-181 Rev 1) (Version: 1.0.0)