OV-LGA-001 Cyber Legal Advisor

Provides leadership, management, direction, or development and advocacy so the organization may effectively conduct cybersecurity work.

Provides legally sound advice and recommendations to leadership and staff on a variety of relevant topics within the pertinent subject domain. Advocates legal and policy changes, and makes a case on behalf of client via a wide range of written and oral work products, including legal briefs and proceedings.

Provides legal advice and recommendations on relevant topics related to cyber law.

Knowledges 17

Code	Description	Work Roles
K0001	Knowledge of computer networking concepts and protocols, and network security methodologies.	52
K0002	Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).	52
K0003	Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.	52
K0004	Knowledge of cybersecurity and privacy principles.	52
K0005	Knowledge of cyber threats and vulnerabilities.	52
K0006	Knowledge of specific operational impacts of cybersecurity lapses.	52
K0017	Knowledge of concepts and practices of processing digital forensic data.	2
K0059	Knowledge of new and emerging information technology (IT) and cybersecurity technologies.	12
K0107	Knowledge of Insider Threat investigations, reporting, investigative tools and laws/regulations.	4
K0157	Knowledge of cyber defense and information security policies, procedures, and regulations.	4
K0261	Knowledge of Payment Card Industry (PCI) data security standards.	17
K0262	Knowledge of Personal Health Information (PHI) data security standards.	17
K0267	Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures.	8
K0312	Knowledge of intelligence gathering principles, policies, and procedures including legal authorities and restrictions.	1
K0316	Knowledge of business or military operation plans, concept operation plans, orders, policies, and standing rules of engagement.	1
K0341	Knowledge of foreign disclosure policies and import/export control regulations as related to cybersecurity.	1
K0615	Knowledge of privacy disclosure statements based on current laws.	2

Skills 1

Code	Description	Work Roles
S0356	Skill in communicating with all levels of management including Board members (e.g., interpersonal skills, approachability, effective listening skills, appropriate use of style and language for the audience).	4

Abilities 1

Code	Description	Work Roles
A0046	Ability to monitor and assess the potential impact of emerging technologies on laws, regulations, and/or policies.	1

Tasks 13

Code	Description	Work Roles
T0419	Acquire and maintain a working knowledge of constitutional issues which arise in relevant laws, regulations, policies, agreements, standards, procedures, or other issuances.	2
T0434	Conduct framing of pleadings to properly identify alleged violations of law, regulations, or policy/guidance.	1
T0465	Develop guidelines for implementation.	1
T0474	Provide legal analysis and decisions to inspectors general, privacy officers, oversight and compliance personnel regarding compliance with cybersecurity policies and relevant legal and regulatory requirements.	1
T0476	Evaluate the impact of changes to laws, regulations, policies, standards, or procedures.	1
T0478	Provide guidance on laws, regulations, policies, standards, or procedures to management, personnel, or clients.	2
T0487	Facilitate implementation of new or revised laws, regulations, executive orders, policies, standards, or procedures.	1
T0522	Prepare legal and other relevant documents (e.g., depositions, briefs, affidavits, declarations, appeals, pleadings, discovery).	1
T0006	Advocate organization's official position in legal and legislative proceedings.	2
T0098	Evaluate contracts to ensure compliance with funding, legal, and program requirements.	2
T0102	Evaluate the effectiveness of laws, regulations, policies, standards, or procedures.	1
T0131	Interpret and apply laws, regulations, policies, standards, or procedures to specific issues.	2
T0220	Resolve conflicts in laws, regulations, policies, standards, or procedures.	6