Cyber Work Roles at CISA

CISA's cybersecurity positions are consistent with the NICE Cybersecurity Workforce Framework.  Explore work roles associated with CISA's cyber careers below and learn how to use the framework to update your resume.

Authorizing Official

Senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation (CNSSI 4009).

Category: Securely Provision
Specialty Area: Risk Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become an Authorizing Official with CISA.

Cyber Defense Analyst

Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.

Category: Protect and Defend
Specialty Area: Cyber Defense Analysis

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Cyber Defense Analyst with CISA.

Cyber Defense Incident Responder

Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.

Category: Protect and Defend
Specialty Area: Incident Response

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Cyber Defense Incident Responder with CISA.

Network Operations Specialist

Plans, implements, and operates network services/systems, to include hardware and virtual environments.

Category: Operate and Maintain
Specialty Area: Network Services

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Network Operations Specialist with CISA.

Security Control Assessor

Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).

Category: Securely Provision
Specialty Area: Risk Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Security Control Assessor with CISA.

Secure Software Assessor

Analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.

Category: Securely Provision
Specialty Area: Software Development

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Secure Software Assessor with CISA.

Software Developer

Develops, creates, maintains, and writes/codes new (or modifies existing) computer applications, software, or specialized utility programs.

Category: Securely Provision
Specialty Area: Software Development

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Software Developer with CISA.

Systems Developer

Designs, develops, tests, and evaluates information systems throughout the systems development life cycle.

Category: Securely Provision
Specialty Area: Systems Development

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Systems Developer with CISA.

Systems Security Analyst

Responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.

Category: Operate and Maintain
Specialty Area: Systems Analysis

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Systems Security Analyst with CISA.

Technical Support Specialist

Provides technical support to customers who need assistance utilizing client-level hardware and software in accordance with established or approved organizational process components (i.e., Master Incident Management Plan, when applicable).

Category: Operate and Maintain
Specialty Area: Customer Service and Technical Support

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Technical Support Specialist with CISA.

Vulnerability Assessment Analyst

Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.

Category: Protect and Defend
Specialty Area: Vulnerability Assessment and Management

Learn more about the core tasks, competencies, and knowledges, skills, and abilities to become a Vulnerability Assessment Analyst with CISA.

Was this document helpful?  Yes  |  Somewhat  |  No