Partner Integration Planning
Responsible for advancing cooperation across organizational or national borders between cyber operations partners. Provides guidance, resources, and collaboration to develop best practices and facilitate organizational support for achieving objectives in integrated cyber actions.
- T0630: Incorporate intelligence equities into the overall design of cyber operations plans
- T0729: Inform external partners of the potential effects of new or revised policy and guidance on cyber operations partnering activities
- T0818: Serve as a liaison with external partners
- T1020: Determine the operational and safety impacts of cybersecurity lapses
- T1033: Support cyber operations
- T1036: Integrate leadership priorities
- T1037: Develop operations strategies
- T1038: Integrate organization objectives in intelligence collection
- T1043: Determine staffing needs
- T1054: Scope analysis reports to various audiences that accounts for data sharing classification restrictions
- T1642: Advise stakeholders on course of action development
- T1649: Synchronize intelligence support plans across partner organizations
- T1657: Develop a diverse program of information materials
- T1678: Develop cyber operations crisis action plans
- T1680: Develop cyber operations staffing policies
- T1704: Develop intelligence operations plans
- T1710: Develop policies for providing and obtaining cyber operations support from external partners
- T1711: Develop international cybersecurity strategies, policies, and activities to meet organizational objectives
- T1714: Develop partner planning strategies and processes
- T1715: Develop operations strategies and processes
- T1716: Develop capability development strategies and processes
- T1717: Recommend changes to planning policies and procedures
- T1718: Implement changes to planning policies and procedures
- T1719: Develop cybersecurity cooperation agreements with external partners
- T1720: Maintain cybersecurity cooperation agreements with external partners
- T1721: Assess cybersecurity cooperation agreements with external partners
- T1735: Facilitate interactions between internal and external partner decision makers to synchronize and integrate courses of action
- T1740: Identify security cooperation priorities
- T1755: Integrate cyber planning and targeting efforts
- T1764: Assess effectiveness of integrated cyber operations
- T1777: Conduct policy reviews
- T1778: Assess the consequences of endorsing or not endorsing policies
- T1779: Coordinate strategic planning efforts with internal and external partners
- T1780: Develop external coordination policies
- T1791: Provide cyber recommendations to intelligence support planning
- T1794: Develop cyber operations strategies
- T1816: Recommend subject matter experts who can assist in the investigation of complex or unusual situations
- T1822: Submit requests for deconfliction of cyber operations
- T1823: Respond to requests for deconfliction of cyber operations
- T1826: Synchronize intelligence engagement activities across partner organizations
- T1827: Synchronize cybersecurity cooperation plans
- T1836: Document lessons learned during events and exercises
- K0480: Knowledge of malware
- K0498: Knowledge of operational planning processes
- K0644: Knowledge of cybersecurity operation policies and procedures
- K0674: Knowledge of computer networking protocols
- K0675: Knowledge of risk management processes
- K0676: Knowledge of cybersecurity laws and regulations
- K0677: Knowledge of cybersecurity policies and procedures
- K0678: Knowledge of privacy laws and regulations
- K0679: Knowledge of privacy policies and procedures
- K0680: Knowledge of cybersecurity principles and practices
- K0681: Knowledge of privacy principles and practices
- K0682: Knowledge of cybersecurity threats
- K0683: Knowledge of cybersecurity vulnerabilities
- K0684: Knowledge of cybersecurity threat characteristics
- K0689: Knowledge of network infrastructure principles and practices
- K0698: Knowledge of cryptographic key management principles and practices
- K0718: Knowledge of network communications principles and practices
- K0751: Knowledge of system threats
- K0752: Knowledge of system vulnerabilities
- K0766: Knowledge of data asset management principles and practices
- K0773: Knowledge of telecommunications principles and practices
- K0784: Knowledge of insider threat laws and regulations
- K0785: Knowledge of insider threat tools and techniques
- K0786: Knowledge of physical computer components
- K0787: Knowledge of computer peripherals
- K0792: Knowledge of network configurations
- K0799: Knowledge of project management principles and practices
- K0800: Knowledge of evidence admissibility laws and regulations
- K0812: Knowledge of digital communication systems and software
- K0819: Knowledge of import and export control laws and regulations
- K0820: Knowledge of supply chain risks
- K0821: Knowledge of federal agency roles and responsibilities
- K0857: Knowledge of malware analysis tools and techniques
- K0865: Knowledge of data classification standards and best practices
- K0866: Knowledge of data classification tools and techniques
- K0892: Knowledge of cyber defense laws and regulations
- K0899: Knowledge of crisis management protocols
- K0900: Knowledge of crisis management processes
- K0901: Knowledge of crisis management tools and techniques
- K0915: Knowledge of network architecture principles and practices
- K0916: Knowledge of malware analysis principles and practices
- K0925: Knowledge of wireless communication tools and techniques
- K0926: Knowledge of signal jamming tools and techniques
- K0934: Knowledge of data classification policies and procedures
- K0942: Knowledge of cryptology principles and practices
- K0961: Knowledge of planning systems and software
- K0969: Knowledge of cyber-attack tools and techniques
- K0978: Knowledge of intelligence collection planning processes
- K0983: Knowledge of computer networking principles and practices
- K0985: Knowledge of crisis action plan models and frameworks
- K0990: Knowledge of cyber operations principles and practices
- K0993: Knowledge of deconfliction processes
- K1014: Knowledge of network security principles and practices
- K1019: Knowledge of operations security (OPSEC) principles and practices
- K1023: Knowledge of network exploitation tools and techniques
- K1024: Knowledge of partnership policies and procedures
- K1025: Knowledge of decision-making policies and procedures
- K1030: Knowledge of operational planning tools and techniques
- K1036: Knowledge of target organization structures
- K1037: Knowledge of target critical capabilities
- K1038: Knowledge of target critical vulnerabilities
- K1100: Knowledge of analytical tools and techniques
- K1101: Knowledge of analytics
- K1109: Knowledge of virtual collaborative workspace tools and techniques
- S0186: Skill in applying crisis planning procedures
- S0385: Skill in communicating complex concepts
- S0414: Skill in evaluating laws
- S0415: Skill in evaluating regulations
- S0416: Skill in evaluating policies
- S0430: Skill in collaborating with others
- S0431: Skill in applying critical thinking
- S0432: Skill in coordinating cybersecurity operations across an organization
- S0438: Skill in functioning effectively in a dynamic, fast-paced environment
- S0439: Skill in identifying external partners
- S0497: Skill in developing client organization profiles
- S0498: Skill in managing an intelligence collection plan
- S0501: Skill in developing crisis action plans
- S0515: Skill in identifying partner capabilities
- S0526: Skill in initiating planning activities
- S0527: Skill in developing crisis action timelines
- S0579: Skill in preparing reports
- S0600: Skill in collecting relevant data from a variety of sources
- S0610: Skill in communicating effectively
- S0686: Skill in performing risk assessments
- S0687: Skill in performing administrative planning activities
- S0709: Skill in developing analytics
- S0712: Skill in evaluating data source quality
- S0713: Skill in evaluating information quality
- S0728: Skill in preparing briefings
- S0729: Skill in preparing plans
- S0756: Skill in incorporating feedback
- S0776: Skill in distinguishing between notional and actual resources
- S0785: Skill in interpreting planning guidance
- S0788: Skill in orchestrating planning teams
- S0789: Skill in coordinating collection support
- S0790: Skill in monitoring status
- S0791: Skill in presenting to an audience
- S0800: Skill in analyzing organizational patterns and relationships
- S0801: Skill in assessing partner operations capabilities
- S0817: Skill in building internal and external relationships
Source: Workforce Framework for Cybersecurity (NICE Framework) (NIST SP 800-181 Rev 1) (Version: 1.0.0)