(e) Qualifications. The CySO must have general knowledge, through training, education, or equivalent job experience, in the following:
- (1) General vessel, facility, or OCS facility operations and conditions;
- (2) General cybersecurity guidance and best practices;
- (3) The vessel, facility, or OCS facility's Cyber Incident Response Plan;
- (4) The vessel, facility, or OCS facility's Cybersecurity Plan;
- (5) Cybersecurity equipment and systems;
- (6) Methods of conducting cybersecurity audits, inspections, control, and monitoring techniques;
- (7) Relevant laws and regulations pertaining to cybersecurity;
- (8) Instruction techniques for cybersecurity training and education;
- (9) Handling of Sensitive Security Information and security related communications;
- (10) Current cybersecurity threat patterns and KEVs;
- (11) Recognizing characteristics and behavioral patterns of persons who are likely to threaten security; and
- (12) Conducting and assessing cybersecurity drills and exercises.