Cybersecurity Skill Community


Cybersecurity Skill Community - #BecomeACISAzen

 

Within CISA’s Cyber Workforce, the Cybersecurity skill community must secure, defend, and preserve data, networks, net-centric capabilities, and other designated systems by ensuring appropriate security controls and measures are in place, and taking internal defense actions. This includes access to system controls, monitoring, administration, and integration of cybersecurity into all aspects of engineering and acquisition of cyber capabilities.

CISA uses the NICE Cybersecurity Workforce Framework to define duties and responsibilities of our cyber workforce. Explore the many cyber career areas within CISA below and learn how to use the framework to update your resume. To view all of CISA's current job openings, please visit USAJOBs. 

Authorizing Official

Senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation (CNSSI 4009).

Category: Securely Provision
Specialty Area: Risk Management

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become an Authorizing Official with CISA.

Cyber Defense Analyst

Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.

Category: Protect and Defend
Specialty Area: Cyber Defense Analysis

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Cyber Defense Analyst with CISA.

Cyber Defense Forensics Analyst

Analyzes digital evidence and investigates computer security incidents to derive useful information in support of system/network vulnerability mitigation.

Category: Investigate
Specialty Area: Digital Forensics 

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Cyber Defense Forensics Analyst with CISA.

Cyber Defense Incident Responder

Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.

Category: Protect and Defend
Specialty Area: Incident Response

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Cyber Defense Incident Responder with CISA.

Information Systems Security Manager

Responsible for the cybersecurity of a program, organization, system, or enclave.

Category: Oversee and Govern
Specialty Area: Cybersecurity Management

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Information Systems Security Manager with CISA.

Secure Software Assessor

Analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.

Category: Securely Provision
Specialty Area: Software Development

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Secure Software Assessor with CISA.

Security Architect

Ensures that the stakeholder security requirements necessary to protect the organization’s mission and business processes are adequately addressed in all aspects of enterprise architecture including reference models, segment and solution architectures, and the resulting systems supporting those missions and business processes.

Category: Securely Provision
Specialty Area: Systems Architecture

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Security Architect with CISA.

Security Control Assessor

Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).

Category: Securely Provision
Specialty Area: Risk Management

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Security Control Assessor with CISA.

Systems Security Analyst

Responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.

Category: Operate and Maintain
Specialty Area: Systems Analysis

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Systems Security Analyst with CISA.

Vulnerability Assessment Analyst

Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.

Category: Protect and Defend
Specialty Area: Vulnerability Assessment and Management

Learn more about the core tasks, competencies, and knowledge, skills, and abilities to become a Vulnerability Assessment Analyst with CISA.

Was this webpage helpful?  Yes  |  Somewhat  |  No