DOE Essential Body of Knowledge & Core Competency Training
The Office of the Chief Information Officer (OCIO) utilized DOE cybersecurity policy, best practices and lessons learned, and comprehensive internal needs assessments to identify fundamental cybersecurity functional roles and associated responsibilities to and define the essential body of knowledge (EBK) needed to support cybersecurity responsibilities and activities within the Department. Components of the EBK are assigned to each functional role, and customized curriculum is determined for each key role via core competency worksheets. The OCIO has determined the following roles to be key functional cyber roles within the Department: Cybersecurity Program Manager (CSPM), Designated Approval Authority (DAA), Designated Approving Authority Representative (DAAR), Information Systems Security Manager (ISSM), Certification Agent (CA), System Owner, and the Information System Security Officer (ISSO).
