{ "competencies": [ { "id": "1.1.1.K", "shortname": "Cybersecurity related requirements and capabilities.", "type": "Knowledge" }, { "id": "1.1.1.O.S", "shortname": "Ability to participate in operational and cybersecurity requirements analysis. Imple", "type": "Skill" }, { "id": "1.1.1.L.S", "shortname": "Ability to assess operational and cybersecurity requirements. Translate them into organizational actionable goals and objectives.", "type": "Skill" }, { "id": "1.1.2.K", "shortname": "Critical information requirements and how they are used for planning.", "type": "Knowledge" }, { "id": "1.1.2.O.S", "shortname": "Ability to define and prioritize critical information needs to support planning and decision-making.", "type": "Skill" }, { "id": "1.1.2.L.S", "shortname": "Ability to define and prioritize critical information needs to support planning and decision-making.", "type": "Skill" }, { "id": "1.1.3.K", "shortname": "How information needs and collection requirements are transposed, tracked and prioritized throughout the organization.", "type": "Knowledge" }, { "id": "1.1.3.O.S", "shortname": "Ability to operationalise information flows according to organizational priorities", "type": "Skill" }, { "id": "1.1.3.L.S", "shortname": "Ability to organize and track information flows according to organizational priorities", "type": "Skill" }, { "id": "1.2.1.K", "shortname": "National and international laws, regulatory framework and obligations, policies and procedures, including those regarding critical infrastructures, cyberdefense, cybersecurity and privacy.", "type": "Knowledge" }, { "id": "1.2.1.L.S", "shortname": "Ability to interpret legal obligations and apply compliance requirements to OT operations.", "type": "Skill" }, { "id": "1.3.1.K", "shortname": "Organizational structure in relation to cyber resilience governance and cyber operations, including roles, responsibilities and relationships between intra-organizational elements.", "type": "Knowledge" }, { "id": "1.3.1.O.S", "shortname": "Ability to understand the governance structures and support coordinated cyber resilience activities.", "type": "Skill" }, { "id": "1.3.1.L.S", "shortname": "Ability to respond to governance structures and support coordinated cyber resilience activities.", "type": "Skill" }, { "id": "1.3.2.K", "shortname": "Organization's decision-making support tools and methods.", "type": "Knowledge" }, { "id": "1.3.3.K", "shortname": "Authorities, responsibilities, capacities and procedures of stakeholders.", "type": "Knowledge" }, { "id": "1.3.3.O.S", "shortname": "Ability to coordinate with internal and external stakeholders according to defined responsibilities.", "type": "Skill" }, { "id": "1.3.3.L.S", "shortname": "Ability to coordinate with internal and external stakeholders according to defined responsibilities.", "type": "Skill" }, { "id": "1.3.4.K", "shortname": "Organization's human resources policies and procedures (employee entry and exit procedures, with regard to access management, use of resources and confidentiality agreements)", "type": "Knowledge" }, { "id": "1.3.4.O.S", "shortname": "Ability to apply HR security procedures related to onboarding, offboarding and access management.", "type": "Skill" }, { "id": "1.3.4.L.S", "shortname": "Ability to apply HR security procedures related to onboarding, offboarding and access management.", "type": "Skill" }, { "id": "1.3.5.K", "shortname": "Organization's key business processes and operations.", "type": "Knowledge" }, { "id": "1.3.5.O.S", "shortname": "Ability to understand operational workflows and identify their dependencies and risks.", "type": "Skill" }, { "id": "1.3.5.L.S", "shortname": "Ability to understand operational workflows and identify their dependencies and risks.", "type": "Skill" }, { "id": "1.3.6.K", "shortname": "Organization's data, information and knowledge needs.", "type": "Knowledge" }, { "id": "1.3.6.O.S", "shortname": "Ability to identify and support data needs required for effective operations and decision-making.", "type": "Skill" }, { "id": "1.3.6.L.S", "shortname": "Ability to identify and support data needs required for effective operations and decision-making.", "type": "Skill" }, { "id": "1.3.7.K", "shortname": "Internal and external cross-functional coordination.", "type": "Knowledge" }, { "id": "1.3.7.O.S", "shortname": "Ability to support coordinated responses and information sharing across functional teams.", "type": "Skill" }, { "id": "1.3.7.L.S", "shortname": "Ability to support coordinated responses and information sharing across functional teams.", "type": "Skill" }, { "id": "1.4.1.K", "shortname": "Organization's information security architecture.", "type": "Knowledge" }, { "id": "1.4.1.O.S", "shortname": "Ability to understand security architecture requirements in OT environments.", "type": "Skill" }, { "id": "1.4.1.L.S", "shortname": "Ability to interpret and apply security architecture requirements in OT environments.", "type": "Skill" }, { "id": "1.4.2.K", "shortname": "Processes and tools for remote access.", "type": "Knowledge" }, { "id": "1.4.2.O.S", "shortname": "Ability to operate secure remote access solutions.", "type": "Skill" }, { "id": "1.4.2.L.S", "shortname": "Ability to validate and ensure secure remote access solutions.", "type": "Skill" }, { "id": "1.4.3.K", "shortname": "Security assessment and authorization process.", "type": "Knowledge" }, { "id": "1.4.3.O.S", "shortname": "Ability to support security assessments for meeting authorization criteria.", "type": "Skill" }, { "id": "1.4.3.L.S", "shortname": "Ability to support security assessments and ensure systems meet authorization criteria.", "type": "Skill" }, { "id": "1.4.4.K", "shortname": "Audit planning, roles and responsabilities", "type": "Knowledge" }, { "id": "1.4.4.O.S", "shortname": "Ability to support audit processes and comply with audit requirements.", "type": "Skill" }, { "id": "1.4.4.L.S", "shortname": "Ability to support audit processes and comply with audit requirements.", "type": "Skill" }, { "id": "1.5.1.K", "shortname": "Organization's assets, including their criticality, sensitivity, as well as their requirements and limitations.", "type": "Knowledge" }, { "id": "1.5.1.O.S", "shortname": "Ability to identify critical assets and apply appropriate (adapted and timely) protection measures.", "type": "Skill" }, { "id": "1.5.1.L.S", "shortname": "Ability to identify critical assets and apply appropriate (adapted and timely) protection measures.", "type": "Skill" }, { "id": "1.6.1.K", "shortname": "Organizational teaching and training policies and procedures.", "type": "Knowledge" }, { "id": "1.6.1.O.S", "shortname": "Ability to appropriately engage with programs and maintain competency documentation.", "type": "Skill" }, { "id": "1.6.1.L.S", "shortname": "Ability to decide on and support training programs and maintain competency documentation.", "type": "Skill" }, { "id": "1.6.2.K", "shortname": "Task assignment, collection, processing, exploitation and dissemination.", "type": "Knowledge" }, { "id": "1.6.2.O.S", "shortname": "Ability to effectively share information.", "type": "Skill" }, { "id": "1.6.2.L.S", "shortname": "Ability to manage knowledge flow and ensure effective information sharing.", "type": "Skill" }, { "id": "1.7.1.K", "shortname": "Supply chain risk management.", "type": "Knowledge" }, { "id": "1.7.1.L.S", "shortname": "Ability to assess supplier risks and apply supply chain security controls.", "type": "Skill" }, { "id": "1.7.2.K", "shortname": "Procedures for supply chain oversight, assessing the credibility of suppliers and solutions.", "type": "Knowledge" }, { "id": "1.7.2.O.S", "shortname": "Ability to collect information necessary to evaluate supplier reliability and compliance with security requirements.", "type": "Skill" }, { "id": "1.7.2.L.S", "shortname": "Ability to evaluate supplier reliability and compliance with security requirements.", "type": "Skill" }, { "id": "2.1.1.K", "shortname": "How to articulate, discuss ideas and persuade others in order to reach consensus.", "type": "Knowledge" }, { "id": "2.1.1.O.S", "shortname": "Ability to communicate clearly and build alignment across teams.", "type": "Skill" }, { "id": "2.1.1.L.S", "shortname": "Ability to communicate clearly and build alignment across teams.", "type": "Skill" }, { "id": "2.1.2.K", "shortname": "How to communicate information to answer general questionnaires and to obtain specific information.", "type": "Knowledge" }, { "id": "2.1.2.O.S", "shortname": "Ability to adapt communication to technical and non-technical audiences.", "type": "Skill" }, { "id": "2.1.2.L.S", "shortname": "Ability to adapt communication to technical and non-technical audiences.", "type": "Skill" }, { "id": "2.1.3.K", "shortname": "Comunication in crisis situations (policies, procedures, roles and responsabilities)", "type": "Knowledge" }, { "id": "2.1.3.O.S", "shortname": "Ability to generate, consolidate, and convey accurate, timely and actionable information during crises (common operational picture)", "type": "Skill" }, { "id": "2.1.3.L.S", "shortname": "Ability to generate, consolidate, and convey accurate, timely and actionable information during crises (common operational picture)\r\nAbility to use the information to make predictions for strategic decision makeing.", "type": "Skill" }, { "id": "2.2.1.K", "shortname": "Conflict resolution processes and procedures.", "type": "Knowledge" }, { "id": "2.2.1.O.S", "shortname": "Ability to recognise conflicts and to escalate appropriately", "type": "Skill" }, { "id": "2.2.1.L.S", "shortname": "Ability to manage and resolve conflicts constructively.", "type": "Skill" }, { "id": "2.2.2.K", "shortname": "Conflict resolution reports that include interactions with external organizations.", "type": "Knowledge" }, { "id": "2.2.2.L.S", "shortname": "Ability to document and communicate conflict outcomes to relevant stakeholders.", "type": "Skill" }, { "id": "2.2.3.K", "shortname": "Communication between OT and IT in crisis situations", "type": "Knowledge" }, { "id": "2.2.3.O.S", "shortname": "Ability to collaborate and reduce friction between OT and IT teams.", "type": "Skill" }, { "id": "2.2.3.L.S", "shortname": "Ability to facilitate collaboration and reduce friction between OT and IT teams.", "type": "Skill" }, { "id": "2.2.4.K", "shortname": "Ways to negotiate in order to address issues/problems to reach mutual consensus.", "type": "Knowledge" }, { "id": "2.2.4.O.S", "shortname": "Ability to negotiate effectively to resolve operational or security issues.", "type": "Skill" }, { "id": "2.2.4.L.S", "shortname": "Ability to negotiate effectively to resolve operational or security issues.", "type": "Skill" }, { "id": "2.3.1.K", "shortname": "Conceptual knowledge of the criteria for discerning procedures for escalating/decelerating decisions involving leadership.", "type": "Knowledge" }, { "id": "2.3.1.O.S", "shortname": "Ability to assess decision impact and escalate appropriately.", "type": "Skill" }, { "id": "2.3.1.L.S", "shortname": "Ability to assess decision impact and escalate appropriately.", "type": "Skill" }, { "id": "2.3.2.K", "shortname": "Knowledge of methods for analyzing objectives and forecasting impacts.", "type": "Knowledge" }, { "id": "2.3.2.O.S", "shortname": "Ability to evaluate risks and anticipate operational consequences.", "type": "Skill" }, { "id": "2.3.2.L.S", "shortname": "Ability to evaluate risks and anticipate operational consequences.", "type": "Skill" }, { "id": "2.4.1.K", "shortname": "How to make decisions in complex environments to achieve objectives, using a structured process and multiple sources of information.", "type": "Knowledge" }, { "id": "2.4.1.O.S", "shortname": "Ability to participate in informed decision-making.", "type": "Skill" }, { "id": "2.4.1.L.S", "shortname": "Ability to make informed decisions using structured analysis and intuitive thinking", "type": "Skill" }, { "id": "2.4.2.K", "shortname": "How to make decisions in a volatile and ambiguous environment, using a structured process and limited information resources, in order to achieve objectives.", "type": "Knowledge" }, { "id": "2.4.2.O.S", "shortname": "Ability to act decisively under uncertainty using available data.", "type": "Skill" }, { "id": "2.4.2.L.S", "shortname": "Ability to act decisively under uncertainty using available data.", "type": "Skill" }, { "id": "3.1.1.K", "shortname": "Basic knowledge of NIS2 requirements", "type": "Knowledge" }, { "id": "3.1.1.O.S", "shortname": "Ability to align pratices with NIS2 governance obligations, reporting and security processes.", "type": "Skill" }, { "id": "3.1.1.L.S", "shortname": "Ability to align pratices with NIS2 governance obligations, reporting and security processes.", "type": "Skill" }, { "id": "3.1.2.K", "shortname": "Basic knowledge of ISO 27000 Standard requirements", "type": "Knowledge" }, { "id": "3.1.2.O.S", "shortname": "Ability to align practices with ISO 27001 controls and documentation requirements.", "type": "Skill" }, { "id": "3.1.2.L.S", "shortname": "Ability to align practices with ISO 27001 controls and documentation requirements.", "type": "Skill" }, { "id": "3.1.3.K", "shortname": "Basic knowledge of IEC 62443-3-2 requirements", "type": "Knowledge" }, { "id": "3.1.3.O.S", "shortname": "Ability to align pratices with IEC 62443 requirements to OT risk assessment and system classification.", "type": "Skill" }, { "id": "3.1.3.L.S", "shortname": "Ability to align pratices with IEC 62443 requirements to OT risk assessment and system classification.", "type": "Skill" }, { "id": "4.1.1.K", "shortname": "Risk management strategy and methodologies, risk assessment, risk tolerance and mitigation strategies.", "type": "Knowledge" }, { "id": "4.1.1.O.S", "shortname": "Ability to perform OT risk assessments and implement mitigation actions aligned with operational constraints.", "type": "Skill" }, { "id": "4.1.1.L.S", "shortname": "Ability to coordinate OT risk assessments and define mitigation actions aligned with operational constraints.", "type": "Skill" }, { "id": "4.1.2.K", "shortname": "Concepts, technologies and methods used to guarantee information security", "type": "Knowledge" }, { "id": "4.1.3.K", "shortname": "Stakeholders organizations, including their objectives, structure, resources and information needs.", "type": "Knowledge" }, { "id": "4.1.3.O.S", "shortname": "Ability to identify stakeholder needs and translate them into actionable OT risk and resilience requirements.", "type": "Skill" }, { "id": "4.1.3.L.S", "shortname": "Ability to identify stakeholder needs and translate them into actionable OT risk and resilience requirements.", "type": "Skill" }, { "id": "5.1.1.K", "shortname": "Incident prevention and detection", "type": "Knowledge" }, { "id": "5.1.1.O.S", "shortname": "Ability to identify anomalies and apply monitoring techniques to detect early signs of incidents.", "type": "Skill" }, { "id": "5.1.2.K", "shortname": "Incident mitigation and recovery", "type": "Knowledge" }, { "id": "5.1.2.O.S", "shortname": "Ability to execute containment and recovery actions while preserving OT system safety and availability.", "type": "Skill" }, { "id": "5.1.2.L.S", "shortname": "Ability to prioritise containment and recovery actions while preserving OT system safety and availability.", "type": "Skill" }, { "id": "5.1.3.K", "shortname": "Incident response programs, response methodologies roles and responsibilities.", "type": "Knowledge" }, { "id": "5.1.3.O.S", "shortname": "Ability to implement structured response procedures and coordinate according to defined roles and responsibilities.", "type": "Skill" }, { "id": "5.1.3.L.S", "shortname": "Ability to define structured response procedures and coordinate according to defined roles and responsibilities.", "type": "Skill" }, { "id": "5.1.4.K", "shortname": "Action planning in crisis situations.", "type": "Knowledge" }, { "id": "5.1.4.O.S", "shortname": "Ability to make rapid operational decisions and coordinate response actions during crisis scenarios.", "type": "Skill" }, { "id": "5.1.4.L.S", "shortname": "Ability to make rapid operational decisions and coordinate response actions during crisis scenarios.", "type": "Skill" }, { "id": "5.2.1.K", "shortname": "Incident reporting requirements, procedures and means of communication, including reporting formats, reporting criteria (requirements and priorities), dissemination practices and legal restrictions (NIS2). Procedures and tools for documenting and consulting incidents, problems and reported events.", "type": "Knowledge" }, { "id": "5.2.1.O.S", "shortname": "Ability to document and communicate incidents clearly and accurately following regulatory and internal reporting requirements.", "type": "Skill" }, { "id": "5.2.1.L.S", "shortname": "Ability to document and communicate incidents clearly and accurately following regulatory and internal reporting requirements.", "type": "Skill" }, { "id": "6.1.1.K", "shortname": "Authorized threat information dissemination processes.", "type": "Knowledge" }, { "id": "6.1.1.O.S", "shortname": "Ability to understand the need for information dissemination protocols.", "type": "Skill" }, { "id": "6.1.1.L.S", "shortname": "Ability to execute information dissemination protocols.", "type": "Skill" }, { "id": "6.1.2.K", "shortname": "Human resource requirements related to threat information (e.g. insider threats).", "type": "Knowledge" }, { "id": "6.1.2.L.S", "shortname": "Ability to coordinate information needs and roles relevant to threat intelligence workflows.", "type": "Skill" }, { "id": "6.1.3.K", "shortname": "Emerging security risks, organization's threat environment and exploiting vulnerabilities.", "type": "Knowledge" }, { "id": "6.1.3.O.S", "shortname": "Ability to analyze evolving risks and identify vulnerabilities relevant to OT environments.", "type": "Skill" }, { "id": "6.1.3.L.S", "shortname": "Ability to analyze evolving risks, identify vulnerabilities relevant to OT environments and assess their operational impact.", "type": "Skill" }, { "id": "6.1.4.K", "shortname": "Risk factors (including HR) that can impact data security", "type": "Knowledge" }, { "id": "6.1.4.O.S", "shortname": "Ability to assess environmental and operational constraints affecting data security", "type": "Skill" }, { "id": "6.1.4.L.S", "shortname": "Ability to assess environmental and operational constraints affecting data security", "type": "Skill" }, { "id": "6.1.5.K", "shortname": "Attack Tactics,  Techniques and Procedures", "type": "Knowledge" }, { "id": "6.1.5.O.S", "shortname": "Ability to recognize common attack Tactics, Techniques and Procedures and relate them to potential operational impacts", "type": "Skill" }, { "id": "6.1.5.L.S", "shortname": "Ability to recognize common attack Tactics, Techniques and Procedures and relate them to potential operational impacts", "type": "Skill" }, { "id": "6.1.6.K", "shortname": "Policies, guidelines, best practices and procedures for collecting threat information, including legal restrictions and legal authorities.", "type": "Knowledge" }, { "id": "6.1.6.O.S", "shortname": "Ability to follow structured collection processes and maintain information integrity.", "type": "Skill" }, { "id": "6.1.6.L.S", "shortname": "Ability to oversee structured collection processes and maintain information integrity.", "type": "Skill" }, { "id": "6.1.7.K", "shortname": "Cyber threat actors", "type": "Knowledge" }, { "id": "6.1.7.O.S", "shortname": "Ability to recognise cyber threat actor relevance to the organization.", "type": "Skill" }, { "id": "6.1.7.L.S", "shortname": "Ability to assess cyber threat actor relevance to the organization.", "type": "Skill" }, { "id": "6.2.1.K", "shortname": "Basic information on how data is transmitted on networks (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).", "type": "Knowledge" }, { "id": "6.2.1.O.S", "shortname": "Ability to transfer this knowledge in the OT security context", "type": "Skill" }, { "id": "6.2.1.L.S", "shortname": "Ability to transfer this knowledge in the OT security context", "type": "Skill" }, { "id": "6.2.2.K", "shortname": "Basic information on IT infrastructure (including network devices) that contribute to the security, performance and reliability of information technologies.", "type": "Knowledge" }, { "id": "6.2.2.O.S", "shortname": "Ability to transfer this knowledge in the OT security context", "type": "Skill" }, { "id": "6.2.2.L.S", "shortname": "Ability to transfer this knowledge in the OT security context.", "type": "Skill" }, { "id": "6.2.3.K", "shortname": "Equipment and networks (e.g., PBX, LANs, WANs, WIFI)", "type": "Knowledge" }, { "id": "6.2.3.O.S", "shortname": "Ability to identify and describe key components of OT/IT network architectures.", "type": "Skill" }, { "id": "6.2.3.L.S", "shortname": "Ability to identify and describe key components of OT/IT network architectures.", "type": "Skill" }, { "id": "6.2.4.K", "shortname": "Basic information on IT (e.g. computer systems/components, access control devices, digital cameras, scanners, hard disks, modems, network components, printers, removable memory).", "type": "Knowledge" }, { "id": "6.2.4.O.S", "shortname": "Ability to operate and troubleshoot common electronic devices used in OT environments.", "type": "Skill" }, { "id": "6.2.4.L.S", "shortname": "Ability to operate and troubleshoot common electronic devices used in OT environments.", "type": "Skill" }, { "id": "6.2.5.K", "shortname": "General components of Supervisory Control and Data Acquisition (SCADA) systems.", "type": "Knowledge" }, { "id": "6.2.5.O.S", "shortname": "Ability to describe SCADA system architecture and operational workflows.", "type": "Skill" }, { "id": "6.2.5.L.S", "shortname": "Ability to describe SCADA system architecture and operational workflows.", "type": "Skill" }, { "id": "6.2.6.K", "shortname": "Underlying concepts of remote access technologies.", "type": "Knowledge" }, { "id": "6.2.6.O.S", "shortname": "Ability to use and validate secure remote access solutions (VPN, RDP, MFA).", "type": "Skill" }, { "id": "6.2.6.L.S", "shortname": "Ability to use and validate secure remote access solutions (VPN, RDP, MFA).", "type": "Skill" }, { "id": "6.3.1.K", "shortname": "Information classification policies, guidelines, best practices and procedures.", "type": "Knowledge" }, { "id": "6.3.1.O.S", "shortname": "Ability to apply classification rules to protect sensitive OT and corporate information.", "type": "Skill" }, { "id": "6.3.1.L.S", "shortname": "Ability to apply classification rules to protect sensitive OT and corporate information.", "type": "Skill" }, { "id": "6.3.2.K", "shortname": "Methods, procedures and techniques for collecting, producing, reporting and sharing information.", "type": "Knowledge" }, { "id": "6.3.2.O.S", "shortname": "Ability to manage information flows and apply consistent reporting and documentation practices.", "type": "Skill" }, { "id": "6.3.2.L.S", "shortname": "Ability to manage information flows and apply consistent reporting and documentation practices.", "type": "Skill" }, { "id": "6.3.3.K", "shortname": "Characteristics of physical and virtual data storage media.", "type": "Knowledge" }, { "id": "6.3.3.O.S", "shortname": "Ability to use appropriate storage solutions while considering security and operational constraints.", "type": "Skill" }, { "id": "6.3.3.L.S", "shortname": "Ability to use appropriate storage solutions while considering security and operational constraints.", "type": "Skill" }, { "id": "6.4.1.K", "shortname": "Policies, guidelines, best practices and procedures for the correct use of the organization's information technologies (e.g., account creation, password rules, access controls) and physical acess.", "type": "Knowledge" }, { "id": "6.4.1.O.S", "shortname": "Ability to follow and enforce access control and IT usage.", "type": "Skill" }, { "id": "6.4.1.L.S", "shortname": "Ability to follow and enforce access control and IT usage.", "type": "Skill" }, { "id": "6.4.2.K", "shortname": "Criminal investigation procedures, standards and methodologies", "type": "Knowledge" }, { "id": "6.4.2.O.S", "shortname": "Ability to handle information and evidence according to legal and forensic requirements.", "type": "Skill" }, { "id": "6.4.2.L.S", "shortname": "Ability to handle information and evidence according to legal and forensic requirements.", "type": "Skill" }, { "id": "6.4.3.K", "shortname": "Hardware and software maintenance practices and procedures.", "type": "Knowledge" }, { "id": "6.5.1.K", "shortname": "Basic information regarding terminology, foundations, concepts, principles, limitations and effects of cybersecurity, privacy principles and organizational requirements (relevant to confidentiality, integrity and availability).", "type": "Knowledge" }, { "id": "6.5.1.O.S", "shortname": "Ability to apply core security principles to safeguard system confidentiality, integrity and availability.", "type": "Skill" }, { "id": "6.5.1.L.S", "shortname": "Ability to apply core security principles to safeguard system confidentiality, integrity and availability.", "type": "Skill" }, { "id": "6.5.2.K", "shortname": "Basic information regarding network security (e.g. encryption, firewalls, authentication, honey pots, perimeter protection).", "type": "Knowledge" }, { "id": "6.5.2.O.S", "shortname": "Ability to identify security risks", "type": "Skill" }, { "id": "6.5.2.L.S", "shortname": "Ability to identify security risks", "type": "Skill" }, { "id": "6.5.3.K", "shortname": "Basics of computer network security, operating systems security and cross-domain and border domain knowledge", "type": "Knowledge" }, { "id": "6.5.4.K", "shortname": "Basics on intrusion detection methods and techniques for devices and networks.", "type": "Knowledge" }, { "id": "6.5.5.K", "shortname": "OT cybersecurity inspection and testing policies and procedures", "type": "Knowledge" }, { "id": "6.5.5.O.S", "shortname": "Ability to support and execute OT cybersecurity inspections.", "type": "Skill" }, { "id": "6.5.5.L.S", "shortname": "Ability to support and execute OT cybersecurity inspections.", "type": "Skill" } ] }