RSS Alerts

Share

More services

Related Links

Related Stories

  • Infosecurity experts hard to get despite economic downturn
    Hiring managers are struggling to fill infosecurity positions due to a mismatch between salary expectations and skill levels, and current demand, information security education and certification organisation (ISC)2 has found it its latest jobs survey.
  • Plenty to worry growing infosec profession
    An in-depth look at the results of the 2008 version of the annual ISC2 Global Information Security Workforce Study reveals the growth both in size and influence of the profession. It reveals also what is worrying security professionals … and the answer to that is plenty.
  • Better job prospects for infosecurity staff, says SANS
    Infosecurity professionals will see improved job opportunities in 2008, according to the SANS Institute. The US-based organisation believes that as senior executives in government realise that their systems have already been compromised, and that they do not control those systems, they will react by creating new jobs.
  • Intergrity and honesty top list of most important federal government cybersecurity skills
    Integrity and honesty top the list of skills needed for the current and future federal cybersecurity workforce, according to an Office of Personnel Management (OPM) survey.
  • Year of the Hack
    Commonly referred to as the year of the hack, it is no secret what 2011 has become famous for in the information security industry. This year’s headlines, reports Fred Donovan, have been made up of data breaches, hacks, APT attacks and mergers and acquisitions

Top 5 Stories

News

Feds tighten up cybersecurity hiring policies

02 December 2009

The federal government is tightening up hiring policies for cybersecurity professionals by launching cybersecurity competency models for its employees.

In a memo, John Berry, director of the US Office of Personnel Management, said that his organization had been working with the National Security Council Interagency Policy Committee (IPC). The IPC cybersecurity group had arrived at three discrete categories of cybersecurity professional.

The IT infrastructure, operations, maintenance, and information assurance category covers personnel who have significant responsibilities for designing, developing, operating, or maintaining the security of federal IT infrastructures, systems, applications and networks.

The domestic law enforcement and counterintelligence category contains those cybersecurity professionals who analyze cybersecurity events and computing environments to identify threats and attackers. Law enforcers and IT forensics experts would fall into this category.

Finally, specialized cybersecurity operations involves personnel employed by departments and agencies that are engaged in highly specialized, and largely classified, cybersecurity operations focused on collection, exploitation and response.

Berry asked agencies to send his organization documents including position descriptions, vacancy announcements, crediting plans, training plans, performance management plans and any studies or competency models of cybersecurity work. The responses are due in by mid-January, and agencies will then be asked to provide subject matter experts to help assess policy requirements.

"This initiative will identify the critical elements of success for the covered workforce, ensuring classification, selection, development, and performance management programs are based on a valid framework", Berry said.
 

This article is featured in:
IT Forensics • Public Sector  • Security Training and Education

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012