SEC504: Hacker Tools, Techniques, and Incident Handling
SEC504Offensive Operations
Systems Testing and Evaluation (OPM 671)
NICE: Design and DevelopmentResponsible for planning, preparing, and executing system tests; evaluating test results against specifications and requirements; and reporting test results and findings.
Target Analyst Reporter (DCWF 133)
DoD 8140: Cyber EffectsSynthesizes intelligence for reporting, evaluates SIGINT/cyber collection, collaborates with analysts, and maintains databases and customer feedback.
Target Digital Network Analyst (DCWF 132)
DoD 8140: Cyber EffectsPerforms advanced analysis of collection and open-source data to track target activity, profile cyber behavior, and support cyberspace operations.
Technical Support (OPM 411)
NICE: Implementation and OperationResponsible for providing technical support to customers who need assistance utilizing client-level hardware and software in accordance with established or approved organizational policies and processes.
Technical Support Specialist (DCWF 411)
DoD 8140: Cyber ITDelivers technical support to users, helping them resolve issues with client hardware/software according to organizational service processes.
Technology Portfolio Management (OPM 804)
NICE: Oversight and GovernanceResponsible for managing a portfolio of technology investments that align with the overall needs of mission and enterprise priorities.
Technology Program Auditing (OPM 805)
NICE: Oversight and GovernanceResponsible for conducting evaluations of technology programs or their individual components to determine compliance with published standards.
Technology Research and Development (OPM 661)
NICE: Design and DevelopmentResponsible for conducting software and systems engineering and software systems research to develop new capabilities with fully integrated cybersecurity. Conducts comprehensive technology research to evaluate potential vulnerabilities in cyberspace systems.
Threat Analysis (OPM 141)
NICE: Protection and DefenseResponsible for collecting, processing, analyzing, and disseminating cybersecurity threat assessments. Develops cybersecurity indicators to maintain awareness of the status of the highly dynamic operating environment.
Threat Detection & Response
Cloud SecurityMonitor, test, detect, and investigate threats to cloud environments.
Threat Hunter
Digital Forensics and Incident ResponseThis expert applies new threat intelligence against existing evidence to identify attackers that have slipped through real-time detection mechanisms. The practice of threat hunting requires several skill sets, including threat intelligence, system and network forensics, and investigative development processes. This role transitions incident response from a purely reactive investigative process to a proactive one, uncovering adversaries or their footprints based on developing intelligence.