Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).
Security Control Assessor
We can browse through the NICE Cybersecurity Workforce Framework of Work Roles at the following website:
https://niccs.cisa.gov/nice-cybersecurity-workforce-framework-work-roles
All of the Work Roles and their descriptions are listed here, so we can do a simple CTRL+F search to find our solution:
So, our answer is Security Control Assessor.
| Previous Challenge | Return to Challenges | Next Challenge |
|---|