{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,18]],"date-time":"2026-04-18T07:15:28Z","timestamp":1776496528449,"version":"3.51.2"},"reference-count":29,"publisher":"Association for Computing Machinery (ACM)","issue":"3","license":[{"start":{"date-parts":[[2018,8,9]],"date-time":"2018-08-09T00:00:00Z","timestamp":1533772800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["DGE-1516636"],"award-info":[{"award-number":["DGE-1516636"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Comput. Educ."],"published-print":{"date-parts":[[2018,9,30]]},"abstract":"<jats:p>Our cybersecurity workforce needs surpass our ability to meet them. These needs could be mitigated by developing relevant curricula that prioritize the knowledge, skills, and abilities (KSAs) most important to cybersecurity jobs. To identify the KSAs needed for performing cybersecurity jobs, we administered survey interviews to 44 cyber professionals at the premier hacker conferences Black Hat 2016 and DEF CON 24. Questions concerned 32 KSAs related to cyber defense. Participants rated how important each KSA was to their job and indicated where they had learned that KSA. Fifteen of these KSAs were rated as being of higher-than-neutral importance. Participants also answered open-ended questions meant to uncover additional KSAs that are important to cyber-defense work. Overall, the data suggest that KSAs related to networks, vulnerabilities, programming, and interpersonal communication should be prioritized in cybersecurity curricula.<\/jats:p>","DOI":"10.1145\/3152893","type":"journal-article","created":{"date-parts":[[2018,8,13]],"date-time":"2018-08-13T12:29:41Z","timestamp":1534163381000},"page":"1-12","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":67,"title":["The Core Cyber-Defense Knowledge, Skills, and Abilities That Cybersecurity Students Should Learn in School"],"prefix":"10.1145","volume":"18","author":[{"given":"Keith S.","family":"Jones","sequence":"first","affiliation":[{"name":"Texas Tech University, Lubbock, TX"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Akbar Siami","family":"Namin","sequence":"additional","affiliation":[{"name":"Texas Tech University, Lubbock, TX"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Miriam E.","family":"Armstrong","sequence":"additional","affiliation":[{"name":"Texas Tech University, Lubbock, TX"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,8,9]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"The Economic Impact of Cyber-Attacks. Congressional Research Service Documents, CRS RL32331","author":"Cashell Brian","year":"2004"},{"key":"e_1_2_1_2_1","volume-title":"Hacking the skills shortage: A study of the international shortage in cybersecurity skills","author":"Center for Strategic and International Studies. 2016.","year":"2017"},{"key":"e_1_2_1_3_1","volume-title":"Retrieved","author":"McGettrick Andrew","year":"2013"},{"key":"e_1_2_1_4_1","volume-title":"Burning Glass Technologies. Retrieved","author":"Restuccia Dan","year":"2015"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1177\/1541931213601176"},{"key":"e_1_2_1_6_1","volume-title":"A Guide to the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (2.0). Taylor 8 Francis","author":"Shoemaker Dan"},{"key":"e_1_2_1_7_1","volume-title":"Retrieved","author":"NICCS.","year":"2017"},{"key":"e_1_2_1_8_1","volume-title":"Department of Homeland Security. Retrieved","author":"Homeland Security Advisory Council","year":"2012"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2014.254"},{"key":"e_1_2_1_10_1","volume-title":"Centers of academic excellence in cybersecurity. Retrieved","author":"National Security Administration. 2016.","year":"2017"},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2016.05.510"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/2390317.2390330"},{"key":"e_1_2_1_13_1","volume-title":"Proceedings of the Annual Conference on Education in Information Security (ACEIS\u201909)","author":"Michael"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1107622.1107633"},{"key":"e_1_2_1_15_1","volume-title":"Advances in Human Factors in Cybersecurity","author":"Patterson Wayne"},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2013.84"},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/2629636"},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/2885990.2886004"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1177\/1541931213601812"},{"key":"e_1_2_1_20_1","volume-title":"Retrieved","author":"DEF","year":"2017"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1037\/h0041412"},{"key":"e_1_2_1_22_1","volume-title":"Cognitive Methods in Situation Awareness and Decision Support (CogSIMA\u201912)","author":"Champion Michael A."},{"key":"e_1_2_1_23_1","volume-title":"Job Analysis Results for Malicious-Code Reverse Engineers: A Case Study. No. CMU\/SEI-2014-TR-002","author":"Cowley Jennifer"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-78243-8_2"},{"key":"e_1_2_1_25_1","doi-asserted-by":"crossref","unstructured":"John R. Goodall Wayne G. Lutters and Anita Komlodi. 2009. Developing expertise for network intrusion detection. Information Technology 8 People 22 92--108.  John R. Goodall Wayne G. Lutters and Anita Komlodi. 2009. Developing expertise for network intrusion detection. Information Technology 8 People 22 92--108.","DOI":"10.1108\/09593840910962186"},{"key":"e_1_2_1_26_1","volume-title":"Retrieved","author":"SANS Institute","year":"2014"},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2006.110"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1231047.1231056"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1041624.1041671"}],"container-title":["ACM Transactions on Computing Education"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3152893","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3152893","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3152893","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:11:20Z","timestamp":1750212680000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3152893"}},"subtitle":["Results from Interviews with Cybersecurity Professionals"],"short-title":[],"issued":{"date-parts":[[2018,8,9]]},"references-count":29,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2018,9,30]]}},"alternative-id":["10.1145\/3152893"],"URL":"https:\/\/doi.org\/10.1145\/3152893","relation":{},"ISSN":["1946-6226"],"issn-type":[{"value":"1946-6226","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018,8,9]]},"assertion":[{"value":"2017-04-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2017-10-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2018-08-09","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}