Welcome to Lunarline School of Cybersecurity (SCS) - Providing Excellence in Cybersecurity Training and Certifications Since 2008
Contact SCS
School of Cybersecurity
To get started, contact us today at 571-481-9307
LinkedIn
YouTube
shopping_cart
Product was added to your cart

Cart

Cybersecurity Management (MGT)

Home NICE Framework Oversee and Govern (OV) Cybersecurity Management (MGT)

Cybersecurity Management (MGT) NICE Specialty Area

Oversees the cybersecurity program of an information system or network, including managing information security implications within the organization, specific program, or other area of responsibility, to include strategic, personnel, infrastructure, requirements, policy enforcement, emergency planning, security awareness, and other resources.
NICE Work Role Name:
Information Systems Security Manager
NICE Work Role ID:
OV-MGT-001
NICE Category:
Oversee & Govern (OV)
NICE Work Role Description:

Responsible for the cybersecurity of a program, organization, system, or enclave.

School of Cybersecurity Training
School of Cybersecurity Training
  1. Cloud Security and FedRAMP (PR108)
  2. Cloud Security and FedRAMP - SP (PR108-SP)
  3. Cloud Security Fundamentals (PR109)
  4. Common Controls Provider (SP062-WBT)
  5. Continuous Monitoring and Security Operations (CO266)
  6. Counterintelligence for IT and Cybersecurity Professionals (AN209)
  7. Counterintelligence for IT and Cybersecurity Professionals - SP (AN209-SP)
  8. Cybersecurity Bootcamp (CYB101)
  9. Cybersecurity Fundamentals (CYB101)
  10. Cybersecurity Fundamentals - SP (CYB101-SP)
  11. Cybersecurity Fundamentals - WBT (CYB001-WBT)
  12. Cybersecurity Fundamentals for Managers - WBT (OV053-WBT)
  13. Cybersecurity Operations and Planning (AN165)
  14. Cybersecurity Operations and Planning - SP (AN165-SP)
  15. FISMA Overview (SP106)
  16. FISMA Overview - SP (SP106-SP)
  17. Healthcare Security & Privacy for IT Professionals (OV105)
  18. Implementing and Securing Your Virtual Environment (OM112)
  19. Implementing and Securing Your Virtual Environment - WBT (OM012-WBT)
  20. Information Security Risk Assessments (SP130)
  21. Information Systems Continous Monitoring for Philips (CO131-PHI)
  22. Information Systems Continuous Monitoring (CO212)
  23. Information Systems Security Manager (OV303-RBT)
  24. Insider Threat Awareness - WBT (AN002-WBT)
  25. Network and Packet Analysis (OM207)
  26. NIST 800-171 (SP105b)
  27. NIST 800-171 - Remote (SP105a)
  28. NIST 800-171 - SP (SP105-SP)
  29. Privacy for IT/ISS Professionals (OV231)
  30. Privacy for IT/ISS Professionals - SP (OV231-SP)
  31. Risk Management Framework (RMF) Common Controls (SP111)
  32. Risk Management Framework (RMF) Common Controls - SP (SP111-SP)
  33. Risk Management Framework (RMF) for DoD & Intelligence Communities - In-Depth (SP101-3)
  34. Risk Management Framework (RMF) for DoD & Intelligence Communities - In-Depth - SP (SP101-3-SP)
  35. Risk Management Framework (RMF) for DoD & Intelligence Communities - Intensive (SP101-4)
  36. Risk Management Framework (RMF) for DoD & Intelligence Communities - Intensive - SP (SP101-4-SP)
  37. Risk Management Framework (RMF) for DoD & Intelligence Communities - Overview (SP101-1)
  38. Risk Management Framework (RMF) for DoD & Intelligence Communities - Overview - SP (SP101-1-SP)
  39. Risk Management Framework (RMF) for Federal Systems - In-Depth (SP102-3)
  40. Risk Management Framework (RMF) for Federal Systems - In-Depth - SP (PR102-3-SP)
  41. Risk Management Framework (RMF) for Federal Systems - Intensive (PR102-4)
  42. Risk Management Framework (RMF) for Federal Systems - Intensive - SP (PR102-4-SP)
  43. Risk Management Framework (RMF) for Federal Systems - Overview (SP102-1)
  44. Risk Management Framework for Federal Systems Overview - SP (SP102-1-SP)
  45. RMF for Medical Devices (SP222)
  46. RMF for NASA (PR102-NASA)
  47. RMF for SAPCOs (SP225)
  48. RMF Rev5 Process Change - WBT (SP001-WBT)
  49. Securing Wireless Networks (OM210)
  50. Securing Your Digital Environment (SP144)
  51. Securing Your Digital Environment - WBT (OM044-WBT)
  52. Social Media and Privacy - WBT (CYB080-WBT)
  53. USCG War Game Exercise (CYB302)
  54. Windows System Security Auditing (OM208)
  55. Windows System Security Auditing - SP (OM208-SP)
CCE Program
  1. Certified Expert Authorizing Official (CEAO)®
  2. Certified Expert Program Manager (CEPM)®
  3. Certified Expert Security Officer (CESO)®
  4. Certified Expert Security Professional (CESP)®
Knowledge, Skills, Abilities and Tasks
Knowledge
Knowledge
  1. K0001 - Knowledge of computer networking concepts and protocols, and network security methodologies.
  2. K0002 - Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  3. K0003 - Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
  4. K0004 - Knowledge of cybersecurity and privacy principles.
  5. K0005 - Knowledge of cyber threats and vulnerabilities.
  6. K0006 - Knowledge of specific operational impacts of cybersecurity lapses.
  7. K0008 -Knowledge of applicable business processes and operations of customer organizations.
  8. K0018Knowledge of encryption algorithms
  9. K0021 - Knowledge of data backup and recovery.
  10. K0026 - Knowledge of business continuity and disaster recovery continuity of operations plans.
  11. K0033 - Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists).
  12. K0038 - Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.
  13. K0040 - Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
  14. K0042Knowledge of incident response and handling methodologies.
  15. K0043Knowledge of industry-standard and organizationally accepted analysis principles and methods.
  16. K0046Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
  17. K0048 - Knowledge of Risk Management Framework (RMF) requirements.
  18. K0053 - Knowledge of measures or indicators of system performance and availability.
  19. K0054 - Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
  20. K0058 - Knowledge of network traffic analysis methods.
  21. K0059 - Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
  22. K0061 - Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
  23. K0070 - Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  24. K0072 - Knowledge of resource management principles and techniques.
  25. K0076 - Knowledge of server administration and systems engineering theories, concepts, and methods.
  26. K0077 - Knowledge of server and client operating systems.
  27. K0087 - Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design.
  28. K0090 - Knowledge of system life cycle management principles, including software security and usability.
  29. K0092 - Knowledge of technology integration processes.
  30. K0101 - Knowledge of the organization’s enterprise information technology (IT) goals and objectives.
  31. K0106 - Knowledge of what constitutes a network attack and a network attack’s relationship to both threats and vulnerabilities.
  32. K0121 - Knowledge of information security program management and project management principles and techniques.
  33. K0126 - Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
  34. K0149 - Knowledge of organization’s risk tolerance and/or risk management approach.
  35. K0150 - Knowledge of enterprise incident response program, roles, and responsibilities.
  36. K0151 - Knowledge of current and emerging threats/threat vectors.
  37. K0163 - Knowledge of critical information technology (IT) procurement requirements.
  38. K0167 - Knowledge of system administration, network, and operating system hardening techniques.
  39. K0168 - Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures.
  40. K0169 - Knowledge of information technology (IT) supply chain security and supply chain risk management policies, requirements, and procedures.
  41. K0170 - Knowledge of critical infrastructure systems with information communication technology that were designed without system security considerations.
  42. K0179 - Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
  43. K0180 - Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
  44. K0199 - Knowledge of security architecture concepts and enterprise architecture reference models (e.g., Zachman, Federal Enterprise Architecture [FEA]).
  45. K0260 - Knowledge of Personally Identifiable Information (PII) data security standards.
  46. K0261 - Knowledge of Payment Card Industry (PCI) data security standards.
  47. K0262 - Knowledge of Personal Health Information (PHI) data security standards.
  48. K0267 - Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures.
  49. K0287 - Knowledge of an organization’s information classification program and procedures for information compromise.
  50. K0332 - Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  51. K0342 - Knowledge of penetration testing principles, tools, and techniques.
  52. K0622 - Knowledge of controls related to the use, processing, storage, and transmission of data.
  53. K0624 - Knowledge of Application Security Risks (e.g. Open Web Application Security Project Top 10 list)
Skills
Skills
  1. S0018 - Skill in creating policies that reflect system security objectives.
  2. S0027 - Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  3. S0086 - Skill in evaluating the trustworthiness of the supplier and/or product.
Abilities
Abilities
  1. A0128 - Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.
  2. A0161 - Ability to integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements).
  3. A0170 - Ability to identify critical infrastructure systems with information communication technology that were designed without system security considerations.
Tasks
Tasks
  1. T0001 - Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk.
  2. T0002 - Acquire necessary resources, including financial resources, to conduct an effective enterprise continuity of operations program.
  3. T0003 - Advise senior management (e.g., Chief Information Officer [CIO]) on risk levels and security posture.
  4. T0004 - Advise senior management (e.g., CIO) on cost/benefit analysis of information security programs, policies, processes, systems, and elements.
  5. T0005 - Advise appropriate senior leadership or Authorizing Official of changes affecting the organization’s cybersecurity posture.
  6. T0024 - Collect and maintain data needed to meet system cybersecurity reporting.
  7. T0025 Communicate the value of information technology (IT) security throughout all levels of the organization stakeholders.
  8. T0044 - Collaborate with stakeholders to establish the enterprise continuity of operations program, strategy, and mission assurance.
  9. T0089 - Ensure that security improvement actions are evaluated, validated, and implemented as required.
  10. T0091 - Ensure that cybersecurity inspections, tests, and reviews are coordinated for the network environment.
  11. T0092 - Ensure that cybersecurity requirements are integrated into the continuity planning for that system and/or organization(s).
  12. T0093 - Ensure that protection and detection capabilities are acquired or developed using the IS security engineering approach and are consistent with organization-level cybersecurity architecture.
  13. T0095 - Establish overall enterprise information security architecture (EISA) with the organization’s overall security strategy.
  14. T0097 - Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed.
  15. T0099 - Evaluate cost/benefit, economic, and risk analysis in decision-making process.
  16. T0106 - Identify alternative information security strategies to address organizational security objective.
  17. T0115 - Identify information technology (IT) security program implications of new technologies or technology upgrades.
  18. T0130 - Interface with external organizations (e.g., public affairs, law enforcement, Command or Component Inspector General) to ensure appropriate and accurate dissemination of incident and other Computer Network Defense information.
  19. T0132 - Interpret and/or approve security requirements relative to the capabilities of new information technologies.
  20. T0133 - Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise’s cybersecurity program.
  21. T0134 - Lead and align information technology (IT) security priorities with the security strategy.
  22. T0135 - Lead and oversee information security budget, staffing, and contracting.
  23. T0147 - Manage the monitoring of information security data sources to maintain organizational situational awareness.
  24. T0148 - Manage the publishing of Computer Network Defense guidance (e.g., TCNOs, Concept of Operations, Net Analyst Reports, NTSM, MTOs) for the enterprise constituency.
  25. T0149 - Manage threat or target analysis of cyber defense information and production of threat information within the enterprise.
  26. T0151 - Monitor and evaluate the effectiveness of the enterprise’s cybersecurity safeguards to ensure that they provide the intended level of protection.
  27. T0157 - Oversee the information security training and awareness program.
  28. T0158 - Participate in an information security risk assessment during the Security Assessment and Authorization process.
  29. T0159 - Participate in the development or modification of the computer environment cybersecurity program plans and requirements.
  30. T0192 - Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations.
  31. T0199 - Provide enterprise cybersecurity and supply chain risk management guidance for development of the Continuity of Operations Plans.
  32. T0206 - Provide leadership and direction to information technology (IT) personnel by ensuring that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities.
  33. T0211 - Provide system-related input on cybersecurity requirements to be included in statements of work and other appropriate procurement documents.
  34. T0213 - Provide technical documents, incident reports, findings from computer examinations, summaries, and other situational awareness information to higher headquarters.
  35. T0215 - Recognize a possible security violation and take appropriate action to report the incident, as required.
  36. T0219 - Recommend resource allocations required to securely operate and maintain an organization’s cybersecurity requirements.
  37. T0227 - Recommend policy and coordinate review and approval.
  38. T0229 - Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
  39. T0234 - Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
  40. T0239 - Use federal and organization-specific published documents to manage operations of their computing environment system(s).
  41. T0248 - Promote awareness of security issues among management and ensure sound security principles are reflected in the organization’s vision and goals.
  42. T0254 - Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies.
  43. T0255 - Participate in Risk Governance process to provide security risks, mitigations, and input on other technical risk.
  44. T0256 - Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements.
  45. T0263 - Identify security requirements specific to an information technology (IT) system in all phases of the system life cycle.
  46. T0264 - Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
  47. T0265 - Assure successful implementation and functionality of security requirements and appropriate information technology (IT) policies and procedures that are consistent with the organization’s mission and goals.
  48. T0275 - Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
  49. T0276 - Participate in the acquisition process as necessary, following appropriate supply chain risk management practices.
  50. T0277 - Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.
  51. T0280 - Continuously validate the organization against policies/guidelines/procedures/regulations/laws to ensure compliance.
  52. T0281 - Forecast ongoing service demands and ensure that security assumptions are reviewed as necessary.
  53. T0282 - Define and/or implement policies and procedures to ensure protection of critical infrastructure as appropriate.
NICE Work Role Name:
Communications Security (COMSEC) Manager
NICE Work Role ID:
OV-MGT-002
NICE Category:
Oversee & Govern (OV)
NICE Work Role Description:

Individual who manages the Communications Security (COMSEC) resources of an organization (CNSSI 4009) or key custodian for a Crypto Key Management System (CKMS).

School of Cybersecurity Training
School of Cybersecurity Training
  1. Communications Security (COMSEC) Manager (OV304-RBT)
CCE Program
  1. Certified Expert Crypto Professional (CECP)®
Knowledge, Skills, Abilities and Tasks
Knowledge
Knowledge
  1. K0001 - Knowledge of computer networking concepts and protocols, and network security methodologies.
  2. K0002 - Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  3. K0003 - Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
  4. K0004 - Knowledge of cybersecurity and privacy principles.
  5. K0005 - Knowledge of cyber threats and vulnerabilities.
  6. K0006 - Knowledge of specific operational impacts of cybersecurity lapses.
  7. K0018 - Knowledge of encryption algorithms
  8. K0026 - Knowledge of business continuity and disaster recovery continuity of operations plans.
  9. K0038 - Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.
  10. K0042Knowledge of incident response and handling methodologies.
  11. K0090Knowledge of system life cycle management principles, including software security and usability.
  12. K0101Knowledge of the organization’s enterprise information technology (IT) goals and objectives.
  13. K0121 - Knowledge of information security program management and project management principles and techniques.
  14. K0126 - Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
  15. K0163 - Knowledge of critical information technology (IT) procurement requirements.
  16. K0267Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures.
  17. K0285Knowledge of implementing enterprise key escrow systems to support data-at-rest encryption.
  18. K0287 - Knowledge of an organization’s information classification program and procedures for information compromise.
  19. K0622 - Knowledge of controls related to the use, processing, storage, and transmission of data.
Skills
Skills
  1. S0027 - Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  2. S0059Skill in using Virtual Private Network (VPN) devices and encryption.
  3. S0138 -Skill in using Public-Key Infrastructure (PKI) encryption and digital signature capabilities into applications (e.g., S/MIME email, SSL traffic).
Abilities
Abilities
  1. A0163 - Ability to interpret Communications Security (COMSEC) terminology, guidelines and procedures.
  2. A0164Ability to identify the roles and responsibilities for appointed Communications Security (COMSEC) personnel.
  3. A0165 - Ability to manage Communications Security (COMSEC) material accounting, control and use procedure.
  4. A0166Ability to identify types of Communications Security (COMSEC) Incidents and how they’re reported.
  5. A0167Ability to recognize the importance of auditing Communications Security (COMSEC) material and accounts.
  6. A0168 - Ability to Identify the requirements of In-Process accounting for Communications Security (COMSEC).
  7. A0177 - Ability to recognize the unique aspects of the Communications Security (COMSEC) environment and hierarchy.
Tasks
Tasks
  1. T0003 - Advise senior management (e.g., Chief Information Officer [CIO]) on risk levels and security posture.
  2. T0004 - Advise senior management (e.g., CIO) on cost/benefit analysis of information security programs, policies, processes, systems, and elements.
  3. T0025 - Communicate the value of information technology (IT) security throughout all levels of the organization stakeholders.
  4. T0044Collaborate with stakeholders to establish the enterprise continuity of operations program, strategy, and mission assurance.
  5. T0089 - Ensure that security improvement actions are evaluated, validated, and implemented as required.
  6. T0095 - Establish overall enterprise information security architecture (EISA) with the organization’s overall security strategy.
  7. T0099 - Evaluate cost/benefit, economic, and risk analysis in decision-making process.
  8. T0215 - Recognize a possible security violation and take appropriate action to report the incident, as required.
  9. T0229 - Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
Training, Education, and Awareness (TEA)
Strategic Planning and Policy (SPP)

Learn About Our Certifications

Menu