Date Published: July 2020
Comments Due:
Email Questions to:
Author(s)
Rodney Petersen (NIST), Danielle Santos (NIST), Matthew Smith (Huntington Ingalls Industries), Gregory Witte (Huntington Ingalls Industries)
Announcement
The National Initiative for Cybersecurity Education (NICE) has released a draft revision to NIST Special Publication 800-181, the Workforce Framework for Cybersecurity (NICE Framework). The NICE Framework is a fundamental reference for describing and sharing information about cybersecurity work in the form of Task Statements and as Work Roles that perform those tasks. In this revision, several updates have been made, including:
- an updated title to be more inclusive of the variety of workers who perform cybersecurity work,
- definition and normalization of key terms,
- principles that facilitate agility, flexibility, interoperability, and modularity,
- introduction of competencies,
- and more!
NOTE: A call for patent claims is included on page iii of this draft. For additional information, see the Information Technology Laboratory (ITL) Patent Policy--Inclusion of Patents in ITL Publications.
This publication describes the Workforce Framework for Cybersecurity (NICE Framework), a fundamental reference for describing and sharing information about cybersecurity work. It expresses that work as Task statements and defines Work Roles that perform those tasks. It also describes Knowledge and Skill statements that provide the foundation for lifelong learners to accomplish tasks. Additionally, Competencies are introduced as a way to further describe learners (employees, job seekers, and students) by grouping sets of knowledge and skills. As a common, consistent lexicon that categorizes and describes cybersecurity work, the NICE Framework improves communication about how to identify, recruit, develop, and retain cybersecurity talent. The NICE Framework is a reference source from which organizations or sectors can develop additional publications or tools that meet their needs to define or provide guidance on different aspects of cybersecurity education, training, and workforce development.
This publication describes the Workforce Framework for Cybersecurity (NICE Framework), a fundamental reference for describing and sharing information about cybersecurity work. It expresses that work as Task statements and defines Work Roles that perform those tasks. It also describes Knowledge and...
See full abstract
This publication describes the Workforce Framework for Cybersecurity (NICE Framework), a fundamental reference for describing and sharing information about cybersecurity work. It expresses that work as Task statements and defines Work Roles that perform those tasks. It also describes Knowledge and Skill statements that provide the foundation for lifelong learners to accomplish tasks. Additionally, Competencies are introduced as a way to further describe learners (employees, job seekers, and students) by grouping sets of knowledge and skills. As a common, consistent lexicon that categorizes and describes cybersecurity work, the NICE Framework improves communication about how to identify, recruit, develop, and retain cybersecurity talent. The NICE Framework is a reference source from which organizations or sectors can develop additional publications or tools that meet their needs to define or provide guidance on different aspects of cybersecurity education, training, and workforce development.
Hide full abstract
Keywords
competency; cybersecurity; cyberspace; education; knowledge; role; security; skill; task; team; training; workforce; work role
Control Families
None selected