• All Source Intelligence

Analyze threat information from multiple sources, disciplines, and agencies across the Intelligence Community. Synthesize and place intelligence information in context; draw insights about the possible implications.

• Exploitation Analysis

Analyze collected information to identify vulnerabilities and potential for exploitation.

• Targets

Apply current knowledge of one or more regions, countries, non-state entities, and/or technologies.

• Threat Analysis

Identify and assess the capabilities and activities of cyber criminals or foreign intelligence entities; produce findings to help initialize or support law enforcement and counterintelligence investigations or activities.

• Collection Operations

Execute collection using appropriate strategies and within the priorities established through the collection management process.

• Cyber Operations

Perform activities to gather evidence on criminal or foreign intelligence entities in order to mitigate possible or real-time threats, protect against espionage or insider threats, foreign sabotage, international terrorist activities, or to support other intelligence activities.

• Cyber Operations Planning

Perform in-depth joint targeting and cyber planning process. Gather information and develops detailed Operational Plans and Orders supporting requirements. Conduct strategic and operational-level planning across the full range of operations for integrated information and cyberspace operations.

• Computer Network Defense Analysis

Use defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network in order to protect information, information systems, and networks from threats.

• Computer Network Defense Infrastructure Support

Test, implement, deploy, maintain, review and administer the infrastructure hardware and software that are required to effectively manage the computer network defense service provider network and resources. Monitor network to actively remediate unauthorized activities.

• Incident Response

Respond to crisis or urgent situations within the pertinent domain to mitigate immediate and potential threats. Use mitigation, preparedness, and response and recovery approaches, as needed, to maximize survival of life, preservation of property, and information security. Investigate and analyze all relevant response activities.

• Vulnerability Assessment and Management

Conduct assessments of threats and vulnerabilities, determine deviations from acceptable configurations, enterprise or local policy, assess the level of risk, and develop and/or recommend appropriate mitigation countermeasures in operational and non-operational situations.

• Information Assurance Compliance

Oversee, evaluate, and support the documentation, validation, and accreditation processes necessary to assure that new IT systems meet the organization’s information assurance and security requirements. Ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives.

• Software Assurance and Security Engineering

Develop and write/code new (or modify existing) computer applications, software, or specialized utility programs following software assurance best practices.