K0001

Knowledge of computer networking concepts and protocols, and network security methodologies.

K0002

Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).

K0003

Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

K0004

Knowledge of cybersecurity and privacy principles.

K0005

Knowledge of cyber threats an`d vulnerabilities.

K0018

Knowledge of encryption algorithms

K0021

Knowledge of data backup and recovery.

K0038

Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.

K0048

Knowledge of Risk Management Framework (RMF) requirements.

K0058

Knowledge of network traffic analysis methods.

K0061

Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

K0076

Knowledge of server administration and systems engineering theories, concepts, and methods.

K0087

Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design.

K0151

Knowledge of current and emerging threats/threat vectors.

K0167

Knowledge of system administration, network, and operating system hardening techniques.

K0179

Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

K0287

Knowledge of an organization's information classification program and procedures for information compromise.

K0332

Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

K0342

Knowledge of penetration testing principles, tools, and techniques.

K0624

Knowledge of Application Security Risks (e.g. Open Web Application Security Project Top 10 list)

S0027

Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

A0128

Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.

A0161

Ability to integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements).

A0170

Ability to identify critical infrastructure systems with information communication technology that were designed without system security considerations.

ISO 27001 Cybersecurity manager guidelines

Cyber Consulting Bootcamp

Cyberdiplomacy Course