Will “Cyber Defense Incident Responder” be Automated?

Core Skills & Abilities

• Troubleshoot security and network problems.

• Develop response and recovery strategies for security breaches.

• Develop information security standards and best practices.

• Oversee development of plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure or to meet emergency data processing needs.

• Assess the quality of security controls, using performance indicators.

• Scan networks, using vulnerability assessment tools to identify vulnerabilities.

• Oversee performance of risk assessment or execution of system tests to ensure the functioning of data processing activities or security measures.

• Identify or implement solutions to information security problems.

• Coordinate monitoring of networks or systems for security breaches or intrusions.

• Coordinate vulnerability assessments or analysis of information security systems.

• Review security assessments for computing environments or check for compliance with cybersecurity standards and regulations.

• Train staff on, and oversee the use of, information security standards, policies, and best practices.

• Develop or install software, such as firewalls and data encryption programs, to protect sensitive information.

• Coordinate documentation of computer security or emergency measure policies, procedures, or tests.

• Identify security system weaknesses, using penetration tests.

• Write reports regarding investigations of information security breaches or network evaluations.

• Develop or implement software tools to assist in the detection, prevention, and analysis of security threats.

• Conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage.

• Provide technical support to computer users for installation and use of security products.

• Recommend information security enhancements to management.