OM-NET-001 Network Operations Specialist

Provides the support, administration, and maintenance necessary to ensure effective and efficient information technology (IT) system performance and security.

Installs, configures, tests, operates, maintains, and manages networks and their firewalls, including hardware (e.g., hubs, bridges, switches, multiplexers, routers, cables, proxy servers, and protective distributor systems) and software that permit the sharing and transmission of all spectrum transmissions of information to support the security of information and information systems.

Plans, implements, and operates network services/systems, to include hardware and virtual environments.

Knowledges 39

Code	Description	Work Roles
K0001	Knowledge of computer networking concepts and protocols, and network security methodologies.	52
K0002	Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).	52
K0003	Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.	52
K0004	Knowledge of cybersecurity and privacy principles.	52
K0005	Knowledge of cyber threats and vulnerabilities.	52
K0006	Knowledge of specific operational impacts of cybersecurity lapses.	52
K0010	Knowledge of communication methods, principles, and concepts that support the network infrastructure.	3
K0011	Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware.	3
K0029	Knowledge of organization's Local and Wide Area Network connections.	2
K0038	Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.	6
K0049	Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).	8
K0050	Knowledge of local area and wide area networking principles and concepts including bandwidth management.	6
K0053	Knowledge of measures or indicators of system performance and availability.	4
K0061	Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).	11
K0071	Knowledge of remote access technology concepts.	2
K0076	Knowledge of server administration and systems engineering theories, concepts, and methods.	2
K0093	Knowledge of telecommunications concepts (e.g., Communications channel, Systems Link Budgeting, Spectral efficiency, Multiplexing).	8
K0104	Knowledge of Virtual Private Network (VPN) security.	4
K0108	Knowledge of concepts, terminology, and operations of a wide range of communications media (computer and telephone networks, satellite, fiber, wireless).	11
K0111	Knowledge of network tools (e.g., ping, traceroute, nslookup)	2
K0113	Knowledge of different types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN).	2
K0135	Knowledge of web filtering technologies.	2
K0136	Knowledge of the capabilities of different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts).	1
K0137	Knowledge of the range of existing networks (e.g., PBX, LANs, WANs, WIFI, SCADA).	1
K0138	Knowledge of Wi-Fi.	1
K0159	Knowledge of Voice over IP (VoIP).	1
K0160	Knowledge of the common attack vectors on the network layer.	2
K0179	Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).	19
K0180	Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.	9
K0200	Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).	11
K0201	Knowledge of symmetric key rotation techniques and concepts.	1
K0203	Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).	10
K0260	Knowledge of Personally Identifiable Information (PII) data security standards.	16
K0261	Knowledge of Payment Card Industry (PCI) data security standards.	17
K0262	Knowledge of Personal Health Information (PHI) data security standards.	17
K0274	Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.	3
K0287	Knowledge of an organization's information classification program and procedures for information compromise.	18
K0332	Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.	14
K0622	Knowledge of controls related to the use, processing, storage, and transmission of data.	6

Skills 11

Code	Description	Work Roles
S0004	Skill in analyzing network traffic capacity and performance characteristics.	2
S0035	Skill in establishing a routing schema.	1
S0040	Skill in implementing, maintaining, and improving established network security practices.	1
S0041	Skill in installing, configuring, and troubleshooting LAN and WAN components such as routers, hubs, and switches.	1
S0056	Skill in using network management tools to analyze network traffic patterns (e.g., simple network management protocol).	2
S0077	Skill in securing network communications.	3
S0079	Skill in protecting a network against malware. (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters).	3
S0084	Skill in configuring and utilizing network protection components (e.g., Firewalls, VPNs, network intrusion detection systems).	2
S0150	Skill in implementing and testing network infrastructure contingency and recovery plans.	1
S0162	Skill in applying various subnet techniques (e.g., CIDR)	1
S0170	Skill in configuring and utilizing computer protection components (e.g., hardware firewalls, servers, routers, as appropriate).	2

Abilities 8

Code	Description	Work Roles
A0052	Ability to operate network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware.	1
A0055	Ability to operate common network tools (e.g., ping, traceroute, nslookup).	4
A0058	Ability to execute OS command line (e.g., ipconfig, netstat, dir, nbtstat).	3
A0059	Ability to operate the organization's LAN/WAN pathways.	1
A0062	Ability to monitor measures or indicators of system performance and availability.	2
A0063	Ability to operate different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts).	3
A0065	Ability to monitor traffic flows across the network.	1
A0159	Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).	2

Tasks 11

Code	Description	Work Roles
T0129	Integrate new systems into existing network architecture.	1
T0035	Configure and optimize network hubs, routers, and switches (e.g., higher-level protocols, tunneling).	1
T0065	Develop and implement network backup and recovery procedures.	1
T0081	Diagnose network connectivity problem.	1
T0121	Implement new system design procedures, test procedures, and quality standards.	1
T0125	Install and maintain network infrastructure device operating system software (e.g., IOS, firmware).	3
T0126	Install or replace network hubs, routers, and switches.	1
T0153	Monitor network capacity and performance.	1
T0160	Patch network vulnerabilities to ensure that information is safeguarded against outside parties.	1
T0200	Provide feedback on network requirements, including network architecture and infrastructure.	1
T0232	Test and maintain network infrastructure including software and hardware devices.	1