Knowledge of methods, tools, and procedures, including development of information security plans, to prevent information systems vulnerabilities, and provide or restore security of information systems and network services. May also include the knowledge of the principles, methods, and tools for evaluating information systems security features against a set of specified security requirements.