Workforce Development and Workforce Planning
Cultivating an integrated cybersecurity workforce that is globally competitive from hire to retire, with the knowledge, skills, and ability to protect our nation from existing and emerging challenges.
A draft update to the NICE Framework NIST Special Publication 800-181 is posted for public comment at http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-181 .
NICE Cybersecurity Workforce Framework (aka the NICE Framework)
The National Initiative for Cybersecurity Education (NICE) developed the NICE Cybersecurity Workforce Framework (NCWF) to define the cybersecurity workforce and provide a common taxonomy and lexicon by which to classify and categorize workers.
The Workforce Framework lists and defines over 30 specialty areas and 50 work roles that compriseof cybersecurity work and provides a description of each. Each of the types of work is placed into one of seven overall categories. The NCWF also identifies common tasks and knowledge, skills, and abilities (KSA's) associated with each work role. The NCWF can be used by the private, public, and academic sectors to describe cybersecurity work and workforces, and related education, training, and professional development.
The NCWF is the output of a collaboration of more than 20 Federal departments and agencies and numerous egagements with academic and industry organizations.
- DHS has established a cybersecurity workforce portal to explore cybersecurity workforce initiatives more deeply. The portal offers the ability to explore cybersecurity career paths, explore degree programs and internship opportunities, learn about competitions, and find general information about cybersecurity education, training, and awareness. It also includes an expansion of the National Cybersecurity Workforce Framework (version 1.0) and resources that supports its use by public and private sector entities.
- DoD Directive 8140.01 Cyberspace Workforce Management- August 11, 2016
Reissues and renumbers DoD Directive (DoDD) 8570.01 to update and expand established DoD policies and assigned responsibilities for managing the DoD cyberspace workforce. Authorizes establishment of a DoD cyberspace workforce management council to ensure that the requirements of this directive are met. The council will be comprised of representatives from the Offices of the DoD Chief Information Officer (DoD CIO), Under Secretary of Defense for Personnel and Readiness (USD(P&R)), Under Secretary of Defense for Policy (USD(P)), Under Secretary of Defense for Intelligence (USD(I)), the Joint Staff, the Director, National Security Agency/Chief, Central Security Service (DIRNSA/CHCSS), and other DoD Components. The directive unifies the overall cyberspace workforce and establishes specific workforce elements (cyberspace effects, cybersecurity, and cyberspace information technology (IT)) to align, manage and standardize cyberspace work roles, baseline qualifications, and training requirements.
- The DoD Cyber Strategy - New Issuance April 23, 2015
The purpose of this Cyber Strategy, the Department's second, is to guide the development of DoD's cyber forces and strengthen the cyber defense and cyber deterrence posture. It focuses on building cyber capabilities and organizations for DoD's three cyber missions: to defend DoD networks, systems, and information; defend the U.S. homeland and U.S. national interests against cyberattacks of significant consequence; and support operational and contingency plans. (April 2015)
- National Academies of Science Study: Professionalizing the Nation's Cybersecurity Workforce: Criteria for Decision-Making
Professionalizing the Nation's Cybersecurity Workforce: Criteria for Decision-Making considers approaches to increasing the professionalization of the nation's cybersecurity workforce. (September 18, 2013)
- Department of Labor sponsored industry Competency Models - Cybersecurity
DOL Cybersecurity Industry Model defines the latest skill and knowledge requirements needed by individuals whose activities impact the security of their organization's cyberspace. The model incorporates competencies identified in the NICE National Cybersecurity Workforce Framework and complements the Framework by including both the competencies needed by the average worker who uses the Internet or the organization's computer network, as well as cybersecurity professionals. The ETA model will be updated to reflect future changes to the Framework.
- O*NET OnLine
A tool for career exploration and job analysis! O*NET OnLine has detailed descriptions of the world of work for use by job seekers, workforce development and HR professionals, students, researchers, and more!