Upload
others
View
3
Download
0
Embed Size (px)
Citation preview
Department of Defense Cyber Workforce Initiatives
April 2017
Cyber Workforce & Skill Communities Notional Representation
Size not to scale
Intelligence
Workforce
(Cyber)
Cyber IT
Workforce
Cybersecurity
Workforce
Cyber
Effects
Workforce
Intelligence
Workforce
Office of the DoD Chief Information Officer (CIO)
1
Cyber Workforce Skill Categories Preliminary Alignment of DCWF (NCWF) Work Roles
All Source Analyst All Source Collection Mgr
All Source Collection Reqs Mgr Cyber Intelligence Planner
Multi Disc Language Analyst
Intel
Cyber Operator Cyber Ops Planner
Partner Integration Planner Mission Assessment Specialist
Target Digital Net. Analyst Target Developer
Cyber Effects
Authorizing Official COMSEC Manager
Cyber Defense Analyst Cyber Def Forensics Analyst
Cyber Def. Incident Responder Cyber Defense Infra Spt Spec.
Exploitation Analyst Info Sys Sec Developer
Info Sys Sec Mgr Secure SW Assessor Security Architect
Security Control Assessor Systems Security Analyst
Vulnerability Analyst Warning Analyst
Cybersecurity
Data Analyst Database Administrator
Enterprise Architect Knowledge Manager
Network Ops Specialist Requirements Planner
R&D Specialist Software Developer
System Administration Systems Developer
Tech Support Specialist T&E Specialist
Cyber IT
12 15 6 5
Acquisition: IT Invest/Portfolio Manager, IT Project Manager, Program Manager, Product Support Manager, IT Program Auditor
Training & Education: Cyber Instructor, Cyber Instr./Curriculum Dev., Cyber WF Developer & Manager
Leadership: Cyber Policy/Strat Planner, Executive Cyber Leadership
Legal/Law Enforcement: Legal Advisor, Cyber Crime Investigator, Forensics Analyst
5
3
2
3
Office of the DoD Chief Information Officer (CIO)
2
DoDM 8140 Cybersecurity
Workforce Qualifications
DoDD 8140 Cyberspace Workforce
Management
The Keystone
DoD Cyber Workforce Framework Inter-relationship Study
Cybersecurity Analysis
Criticality Analysis
Cyber Workforce Training Reqs & Stds
Qualification Requirements
Qualification Criteria Study
DoDI 8140 Identification,
Tracking & Reporting
Competency Analysis
Behavioral Indicators
Education Training
Experiential Learning (OJT & Supervisory Evaluation)
Performance Based Assessments
Credentials
Continuous Development
Fou
nd
atio
nal
Jou
rney
man
Mas
tery
DoDI 8140?? Cyber Workforce
Core Training Requirements
Office of the DoD Chief Information Officer (CIO)
Learning Objectives
3
4
Work Role Examples
Risk Management
Software
Development
Architecture
•Authorizing Official
•Security Control Assessor
•Software Developer
•Secure Software Assessor
•Enterprise Architect
•Security Architect
Se
cu
rely
Pro
vis
ion
Systems
Development
•Systems Developer
• Information Systems Security
Developer
Test and Evaluation •System Test and Evaluation
Specialist
Technology R&D •Research & Development
Specialist Systems
Requirements
Planning
•Systems Requirements
Planner
DCWF Elements
Office of the DoD Chief Information Officer (CIO)
5
Role Definitions: Describe a related
set of responsibilities
required to execute key
functions
Tasks: Activities an
individual performs on a
regular basis to carry out the functions of a
job
KSAs: Standalone
statements that describe the
attributes required for a job
or task
Core Cybersecurity Knowledge Statements:
Cybersecurity Knowledge
statements applied to all work roles within the DCWF (identified with
asterisk)
Technology Requirements
Tool Requirements
Enterprise Baseline Requirements – Aligned to Work Role(s)
Environment Requirements
Mission Requirements
Organizational Requirements
Fun
ctio
nal
Ow
ne
rs
(CC
/S/A
/FA
) En
terp
rise
(O
SD) Enterprise Baseline Requirements
6
Skills Maturity Model Definitions
Level Description
Foundational At this level, the role requires an individual to have familiarity with basic concepts and processes and the ability to apply these with frequent, specific guidance. An individual must be able to perform successfully in routine, structured situations.
Journeyman At this level, the role requires an individual to have extensive knowledge of basic concepts and process and experience applying these with only periodic-high level guidance. An individual must be able to perform successfully in non-routine and sometimes complicated situations.
Mastery At this level, the role requires an individual to have an in-depth understanding of advanced concepts and processes and experience applying these with little to no guidance. An individual must be able to serve as a resource and provide guidance to others. An individual must also be able to perform successfully in complex, unstructured situations.
7
Cyber Workforce Qualifications Process Conceptual Model
Security Control Assessor
Foundational Journeyman Mastery
Yes Yes No Training
No Yes Yes
Operating System
Credential
No No Yes Credentials Certifications
Yes – XX hrs/yr Yes – XX hrs/yr Yes – XX hrs/yr Continuous Professional
Development
Yes
Yes
Yes
Yes
No
Yes Exp
erie
nce
B
ase
d
Lear
nin
g
On The Job Training
Performance Based
Assesments
Yes Yes Yes Education
8
Notional Career Pathing
Career Tracks – Not Reality
Tactical Technical
Leadership
Career Tracks – Closer to Reality
Tactical Technical
Leadership
Career Tracks - Ideal
Tactical Technical
Leadership
Hybrid
DoD CIO Key Point of Contact:
Stephanie Keith
Chief, Cyber Workforce Strategy & Policy Division
All DoD Cyberspace Workforce related inquiries and questions should be sent to: [email protected]
DoD Cyberspace Workforce Strategy
http://dodcio.defense.gov/Portals/0/Documents/DoD%20Cyberspace%20Workforce%20
Strategy_signed(final).pdf
DoD Directive 8140.01 – Cyberspace Workforce Management
http://www.dtic.mil/whs/directives/corres/pdf/814001_2015_dodd.pdf
National Initiative for Cybersecurity Education (NICE) Workforce Framework
http://csrc.nist.gov/nice/framework/
Office of the DoD Chief Information Officer (CIO)
Contact Information
13
Questions?
Office of the DoD Chief Information Officer (CIO)
14