Cyber Security Support Technician

Competency-Based Apprenticeship
Sponsoring Company:
Urban Institute
Industries
O*Net Code
15-1212.00
Rapids Code
2050CB
Req. Hours
0
State
DC
Created
Apr 04, 2021
Updated
Apr 04, 2021

Competency-Based Skills

7 skill sets | 71 total skills
Assists in developing security policies and protocols; assists in enforcing company compliance with network security policies and protocols
Locates (in Intranet, employee handbook or security protocols) organizational policies intended to maintain security and minimize risk and explains their use
Provides guidance to employees on how to access networks, set passwords, reduce security threats and provide defensive measures associated with searches, software downloads, email, Internet, add-ons, software coding and transferred files
Ensures that password characteristics are explained and enforced and that updates are required and enforced based on appropriate time intervals
Explains company or organization's policies regarding the storage, use and transfer of sensitive data, including intellectual property and personally identifiable information. Identifies data life cycle, data storage facilities, technologies and describes business continuity risks
Assigns individuals to the appropriate permission or access level to control access to certain web IP addresses, information and the ability to download programs and transfer data to various locations
Assists employees in the use of technologies that restrict or allow for remote access to the organization's information technology network
Develops security compliance policies and protocols for external services (i.e. Cloud service providers, software services, external data centers)
Complies with incident response and handling methodologies
Articulates the business need or mission of the organization as it pertains to the use of IT systems and the storage of sensitive data
Provides technical support to users or customers
Manages inventory of IT resources
Diagnoses and resolves customer-reported system incidents
Installs and configures hardware, software and peripheral equipment for system users
Monitors client-level computer system performance
Tests computer system performance
Troubleshoots system hardware and software
Administers accounts, network rights, and access to systems and equipment
Implements security measures for uses in system and ensures that system designs incorporate security configuration guidelines
Installs, configures, tests, operates, maintains and manages networks and their firewalls including hardware and software that permit sharing and transmission of information
Collaborates with system developers and users to assist in the selection of appropriate design solutions to ensure the compatibility of system components
Installs, replaces, configures and optimizes network hubs, routers and switches
Assists in network backup and recovery procedures
Diagnoses network connectivity problems
Modifies network infrastructure to serve new purposes or improve workflow
Integrates new systems into existing network architecture
Patches network vulnerabilities to ensure information is safeguarded against outside parties
Repairs network connectivity problems
Tests and maintains network infrastructure including software and hardware devices
Establishes adequate access controls based on principles of least privilege and need-to-know
Implements security measures for users in system and ensures that system designs incorporate security configuration guidelines
Installs, configures, troubleshoots and maintains server configurations to ensure their confidentiality, integrity and availability; also manages accounts, firewalls, configuration, patch and vulnerability management. Is responsible for access control, security configuration and administration
Checks system hardware availability, functionality, integrity and efficiency
Conducts functional and connectivity testing to ensure continuing operability
Conducts periodic server maintenance including cleaning (physically and electronically), disk checks, system configuration and monitoring, data downloads, backups and testing
Assists in the development of group policies and access control lists to ensure compatibility with organizational standards, business rules and needs
Documents compliance with or changes to system administration standard operating procedures
Installs server fixes, updates and enhancements
Maintains baseline system security according to organizational policies
Manages accounts, network rights and access to systems and equipment
Monitors and maintains server configuration
Supports network components
Diagnoses faulty system/server hardware; seeks appropriate support or assistance to perform server repairs
Verifies data redundancy and system recovery procedures
Assists in the coordination or installation of new or modified hardware, operating systems and other baseline software
Provides ongoing optimization and problem- solving support
Resolves hardware/software interface and interoperability problems
Establishes adequate access controls based on principles of least privilege, role based access controls (RBAC) and need-to-know
Configures tools and technologies to detect, mitigate and prevent potential threats
Installs and maintains cyber security detection, monitoring and threat management software
Coordinates with network administrators to administer the updating of rules and signatures for intrusion/detection protection systems, anti-virus and network black and white list
Manages IP addresses based on current threat environment
Ensures application of security patches for commercial products integrated into system design
Uses computer network defense tools for continual monitoring and analysis of system activity to identify malicious activity
Assesses and mitigates system network, business continuity and related security risks and vulnerabilities
Applies security policies to meet security objectives of the system
Performs system administration to ensure current defense applications are in place, including on Virtual Private Network devices
Ensures that data back up and restoration systems are functional and consistent with company's document retention policy and business continuity needs
Identifies potential conflicts with implementation of any computer network defense tools. Performs tool signature testing and optimization
Installs, manages and updates intrusion detection system
Performs technical and non-technical risk and vulnerability assessments of relevant technology focus areas
Conducts authorized penetration testing (Wi- Fi, network perimeter, application security, cloud, mobile devices) and assesses results
Documents systems security operations and maintenance activities
Communicates potential risks or vulnerabilities to manager. Collaborates with others to recommend vulnerability corrections
Identifies information technology security program implications of new technologies or technology upgrades
Reviews network utilization data to identify unusual patterns, suspicious activity or signs of potential threats
Identifies organizational trends with regard to the security posture of systems; identifies unusual patterns or activities
Characterizes and analyzes network traffic to identify anomalous activity and potential threats; performs computer network defense trend analysis and reporting
Receives and analyzes network alerts from various sources within the enterprise and determines possible causes of such alerts
Runs tests to detect real or potential threats, viruses, malware, etc.
Assists in researching cost-effective security controls to mitigate risks
Helps perform damage assessments in the event of an attack
Monitors network data to identify unusual activity, trends, unauthorized devices or other potential vulnerabilities
Documents and escalates incidents that may cause immediate or long-term impact to the environment
Provides timely detection, identification and alerts of possible attacks and intrusions, anomalous activities, and distinguish these incidents and events from normal baseline activities
Uses network monitoring tools to capture and analyze network traffic associated with malicious activity
Performs intrusion analysis
Sets containment blockers to align with company policy regarding computer use and web access