Skip to Content

Cybersecurity

Cybersecurity Competency Model

The Cybersecurity Competency Model below provides a simplified overview of the detailed competencies identified in the Workforce Framework for Cybersecurity (NICE Framework) and is intended to direct users to the many available resources associated with that framework.

The NICE Framework is a reference resource for identifying, recruiting, developing and maintaining cybersecurity talent. The framework provides a common language to categorize and describe cybersecurity work that will help organizations build a strong labor force to protect systems and data. The NICE Framework was developed by NICE, led by NIST in the U.S. Department of Commerce, with support from the U.S. Departments of Defense and Homeland Security, and is the culmination of many years of collaboration between industry, government, and academia.

National Initiative For Cybersecurity Education Logo

Given the nature of and pace of change in cybersecurity, please visit the NICE Framework to keep up-to-date on the latest competencies.

For those who prefer to use the Competency Model Clearinghouse downloadable worksheets to conduct employer needs analysis, perform gap analysis, develop curriculum, or align credentials, use the link below for Tiers 1-4, which were developed with input from NICE. As the NICE Framework is updated on an ongoing basis, in 2024, changes to remove Tier 5 from the Competency Model Clearinghouse model were made. For detailed content on Tier 5 and above, Industry-Sector Functional Areas, visit the NICE Framework for the most current competencies and other resources. For more information, download the Summary of Changes.

Scroll down to view the industry model selected. OR Click on the left menu bar to select another model.

Download the industry model and worksheets in several formats  It is an image of png format for download button

Cybersecurity Competency Model


Cybersecurity Building Blocks Pyramid

'<strong>1.1 Interpersonal Skills</strong> Displaying the skills to work effectively with others from diverse backgrounds.' '<strong>1.2 Integrity</strong> Displaying strong moral principles and work ethic.' '<strong>1.3 Professionalism</strong> Maintaining a professional presence. ' '<strong>1.4 Initiative</strong> Demonstrating a commitment to effective job performance by taking action on one`s own and following through to get the job done.' '<strong>1.5 Adaptability and Flexibility</strong> Displaying the capability to adapt to new, different, or changing requirements.' '<strong>1.6 Dependability and Reliability</strong> Displaying responsible behaviors at work.' '<strong>1.7 Lifelong Learning</strong> Demonstrating a commitment to self-development and improvement of knowledge and skills.' <strong>2.1 Reading</strong> Understanding written sentences, paragraphs, and figures in work-related documents (with accommodation if necessary). <strong>2.2 Writing</strong> Using standard (business) English to compile information and prepare written documents. <strong>2.3 Mathematics</strong> Using principles of mathematics to express ideas and solve problems. <strong>2.4 Science and Technology</strong> Using scientific rules and methods to express ideas and solve problems <strong>2.5 Communication</strong> Listening, speaking, and signaling so others can understand (with accommodation if necessary). <strong>2.6 Critical and Analytic Thinking</strong> Using logical thought processes to analyze information and draw conclusions. <strong>2.7 Fundamental IT User Skills</strong> Using a computer, communication devices, and related applications to input, retrieve, and communicate information. <strong>3.1 Teamwork</strong> Working cooperatively with others to complete work assignments. <strong>3.2 Planning and Organizing</strong> Planning and prioritizing work to manage time effectively and accomplish assigned tasks. <strong>3.3 Creative Thinking</strong> Generating innovative and creative solutions. <strong>3.4 Problem Solving and Decision-Making</strong> Generating, evaluating, and implementing solutions. <strong>3.5 Working with Tools and Technology</strong> Selecting, using, and maintaining tools and technology to facilitate work activity (with accommodation when necessary). <strong>3.6 Business Fundamentals</strong> Using information on basic business principles, trends, and economics. <strong>3.7 Health and Safety</strong> Supporting a safe and healthy workplace. <strong>4.1 Cybersecurity Technology</strong> The knowledge, skills, and abilities needed to understand the purpose and function of cybersecurity technology, including tools and systems. <strong>4.2 Information Assurance</strong> The standards, procedures, and applications used to protect the confidentiality, integrity and availability of information and information systems. <strong>4.3 Risk Management</strong> The systems, tools, and concepts used to minimize the risk to an organization`s cyberspace and prevent a cybersecurity incident. <strong>4.4 Incident Detection</strong> The knowledge, skills, and abilities needed to identify threats or incidents. <strong>4.5 Incident Response and Remediation</strong> The knowledge, skills, and abilities needed to respond to and remediate an incident, as well as restore functionality to the system or infrastructure. Click here to view the NICE Framework Click here to search for O*NET Occupational Competencies Profiles