Target Developer

Conducts advanced analysis of collection and open-source data to ensure target continuity; to profile targets and their activities; and develop techniques to gain more target information. Determines how targets communicate, move, operate and live based on knowledge of target technologies, digital networks, and the applications on them.

Below are the Knowledge, Skills, Abilities and Tasks identified as being required to perform this work role.

CoursesDESCRIPTION
Knowledge of computer networking concepts and protocols, and network security methodologies.
Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
K0003Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
K0004Knowledge of cybersecurity and privacy principles.
K0005Knowledge of cyber threats and vulnerabilities.
K0006Knowledge of specific operational impacts of cybersecurity lapses.
K0108Knowledge of concepts, terminology, and operations of a wide range of communications media (computer and telephone networks, satellite, fiber, wireless).
K0109Knowledge of physical computer components and architectures, including the functions of various components and peripherals (e.g., CPUs, Network Interface Cards, data storage).
K0177Knowledge of cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
K0349Knowledge of website types, administration, functions, and content management system (CMS).
K0362Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.).
K0379Knowledge of client organizations, including information needs, objectives, structure, capabilities, etc.
K0389Knowledge of collection sources including conventional and non-conventional sources.
K0392Knowledge of common computer/network infections (virus, Trojan, etc.) and methods of infection (ports, attachments, etc.).
K0395Knowledge of computer networking fundamentals (i.e., basic computer components of a network, types of networks, etc.).
K0403Knowledge of cryptologic capabilities, limitations, and contributions to cyber operations.
K0413Knowledge of cyber operation objectives, policies, and legalities.
K0424Knowledge of denial and deception techniques.
K0431Knowledge of evolving/emerging communications technologies.
K0436Knowledge of fundamental cyber operations concepts, terminology/lexicon (i.e., environment preparation, cyber-attack, cyber defense), principles, capabilities, limitations, and effects.
K0439Knowledge of governing authorities for targeting.
K0440Knowledge of host-based security products and how those products affect exploitation and reduce vulnerability.
K0442Knowledge of how converged technologies impact cyber operations (e.g., digital, telephony, wireless).
K0444Knowledge of how Internet applications work (SMTP email, web-based email, chat clients, VOIP).
K0445Knowledge of how modern digital and telephony networks impact cyber operations.
K0449Knowledge of how to extract, analyze, and use metadata.
K0462Knowledge of intelligence reporting principles, policies, procedures, and vehicles, including report formats, reportability criteria (requirements and priorities), dissemination practices, and legal authorities and restrictions.
K0471Knowledge of Internet network addressing (IP addresses, classless inter-domain routing, TCP/UDP port numbering).
K0472Knowledge of intrusion detection systems and signature development.
K0473Knowledge of intrusion sets.
K0479Knowledge of malware analysis and characteristics.
K0483Knowledge of methods to integrate and summarize information from any potential sources.
K0487Knowledge of network security (e.g., encryption, firewalls, authentication, honey pots, perimeter protection).
K0499Knowledge of operations security.
K0500Knowledge of organization and/or partner collection systems, capabilities, and processes (e.g., collection and protocol processors).
K0516Knowledge of physical and logical network devices and infrastructure to include hubs, switches, routers, firewalls, etc.
K0520Knowledge of principles and practices related to target development such as target knowledge, associations, communication systems, and infrastructure.
K0544Knowledge of target intelligence gathering and operational preparation techniques and life cycles.
K0547Knowledge of target methods and procedures.
K0550Knowledge of target, including related current events, communication profile, actors, and history (language, culture) and/or frame of reference.
K0559Knowledge of the basic structure, architecture, and design of converged applications.
K0567Knowledge of the data flow from collection origin to repositories and tools.
K0592Knowledge of the purpose and contribution of target templates.
K0599Knowledge of the structure, architecture, and design of modern digital and telephony networks.
K0600Knowledge of the structure, architecture, and design of modern wireless communications systems.
IDDESCRIPTION
S0177Skill in analyzing a target’s communication networks.
S0178Skill in analyzing essential network data (e.g., router configuration files, routing protocols).
S0181Skill in analyzing midpoint collection data.
S0183Skill in analyzing terminal or environment collection data.
S0187Skill in applying various analytical methods, tools, and techniques (e.g., competing hypotheses; chain of reasoning; scenario methods; denial and deception detection; high impact-low probability; network/association or link analysis; Bayesian, Delphi, and Pattern analyses).
S0191Skill in assessing the applicability of available analytical tools to various situations.
S0194Skill in conducting non-attributable research.
S0196Skill in conducting research using deep web.
S0197Skill in conducting social network analysis, buddy list analysis, and/or cookie analysis.
S0203Skill in defining and characterizing all pertinent aspects of the operational environment.
S0205Skill in determining appropriate targeting options through the evaluation of available capabilities against desired effects.
S0208Skill in determining the physical location of network devices.
S0217Skill in evaluating data sources for relevance, reliability, and objectivity.
S0219Skill in evaluating information to recognize relevance, priority, etc.
S0220Skill in exploiting/querying organizational and/or partner collection databases.
S0222Skill in fusion analysis
S0225Skill in identifying a target??s communications networks.
S0228Skill in identifying critical target elements, to include critical target elements for the cyber domain.
S0229Skill in identifying cyber threats which may jeopardize organization and/or partner interests.
S0231Skill in identifying how a target communicates.
S0234Skill in identifying leads for target development.
S0244Skill in managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results.
S0246Skill in number normalization.
S0248Skill in performing target system analysis.
S0256Skill in providing understanding of target or threat systems through the identification and link analysis of physical, functional, or behavioral relationships.
S0259Skill in recognizing denial and deception techniques of the target.
S0261Skill in recognizing relevance of information.
S0262Skill in recognizing significant changes in a target??s communication patterns.
S0263Skill in recognizing technical information that may be used for leads for metadata analysis.
S0268Skill in researching essential information.
S0274Skill in reviewing and editing target materials.
S0277Skill in synthesizing, analyzing, and prioritizing meaning across data sets.
S0280Skill in target network anomaly identification (e.g., intrusions, dataflow or processing, target implementation of new technologies).
S0287Skill in using geospatial data and applying geospatial resources.
S0291Skill in using research methods including multiple, different sources to reconstruct a target network.
S0301Skill in writing about facts and ideas in a clear, convincing, and organized manner.
IDDESCRIPTION
S0177Skill in analyzing a target’s communication networks.
S0178Skill in analyzing essential network data (e.g., router configuration files, routing protocols).
S0181Skill in analyzing midpoint collection data.
S0183Skill in analyzing terminal or environment collection data.
S0187Skill in applying various analytical methods, tools, and techniques (e.g., competing hypotheses; chain of reasoning; scenario methods; denial and deception detection; high impact-low probability; network/association or link analysis; Bayesian, Delphi, and Pattern analyses).
S0191Skill in assessing the applicability of available analytical tools to various situations.
S0194Skill in conducting non-attributable research.
S0196Skill in conducting research using deep web.
S0197Skill in conducting social network analysis, buddy list analysis, and/or cookie analysis.
S0203Skill in defining and characterizing all pertinent aspects of the operational environment.
S0205Skill in determining appropriate targeting options through the evaluation of available capabilities against desired effects.
S0208Skill in determining the physical location of network devices.
S0217Skill in evaluating data sources for relevance, reliability, and objectivity.
S0219Skill in evaluating information to recognize relevance, priority, etc.
S0220Skill in exploiting/querying organizational and/or partner collection databases.
S0222Skill in fusion analysis
S0225Skill in identifying a target??s communications networks.
S0228Skill in identifying critical target elements, to include critical target elements for the cyber domain.
S0229Skill in identifying cyber threats which may jeopardize organization and/or partner interests.
S0231Skill in identifying how a target communicates.
S0234Skill in identifying leads for target development.
S0244Skill in managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results.
S0246Skill in number normalization.
S0248Skill in performing target system analysis.
S0256Skill in providing understanding of target or threat systems through the identification and link analysis of physical, functional, or behavioral relationships.
S0259Skill in recognizing denial and deception techniques of the target.
S0261Skill in recognizing relevance of information.
S0262Skill in recognizing significant changes in a target??s communication patterns.
S0263Skill in recognizing technical information that may be used for leads for metadata analysis.
S0268Skill in researching essential information.
S0274Skill in reviewing and editing target materials.
S0277Skill in synthesizing, analyzing, and prioritizing meaning across data sets.
S0280Skill in target network anomaly identification (e.g., intrusions, dataflow or processing, target implementation of new technologies).
S0287Skill in using geospatial data and applying geospatial resources.
S0291Skill in using research methods including multiple, different sources to reconstruct a target network.
S0301Skill in writing about facts and ideas in a clear, convincing, and organized manner.
IDDESCRIPTION
T0582Provide expertise to course of action development.
T0595Classify documents in accordance with classification guidelines.
T0599Collaborate with other customer, Intelligence and targeting organizations involved in related cyber areas.
T0606Compile, integrate, and/or interpret all-source data for intelligence or vulnerability value with respect to specific targets.
T0607Identify and conduct analysis of target communications to identify information essential to support operations.
T0617Conduct nodal analysis.
T0621Conduct quality control to determine validity and relevance of information gathered about networks.
T0624Conduct target research and analysis.
T0650Determine what technologies are used by a given target.
T0653Apply analytic techniques to gain more target information.
T0692Generate and evaluate the effectiveness of network analysis strategies.
T0706Gather information about networks through traditional and alternative techniques, (e.g., social network analysis, call-chaining, traffic analysis.)
T0707Generate requests for information.
T0710Identify and evaluate threat critical capabilities, requirements, and vulnerabilities.
T0715Identify collection gaps and potential collection strategies against targets.
T0722Identify network components and their functionality to enable analysis and target development.
T0745Make recommendations to guide collection in support of customer requirements.
T0765Provide subject matter expertise to development of exercises.
T0767Perform content and/or metadata analysis to meet organization objectives.
T0778Profile targets and their activities.
T0797Provide target recommendations which meet leadership objectives.
T0802Review appropriate information sources to determine validity and relevance of information gathered.
T0803Reconstruct networks in diagram or report format.
T0807Research communications trends in emerging technologies (in computer and telephony networks, satellite, cable, and wireless) in both open and classified sources.