The National Initiative for Cybersecurity Education (NICE) released a draft revision to NIST Special Publication 800-181, the Workforce Framework for Cybersecurity (NICE Framework), the National Institute of Standards and Technology stated in a release. The NICE Framework is a fundamental reference tool for describing and sharing information about cybersecurity work in the form of Task Statements and as Work Roles for cybersecurity tasks.
In this revision, several refinements have been made, NIST reported, including: an updated title to be more inclusive of the variety of workers who perform cybersecurity work; definition and normalization of key terms; principles that facilitate agility, flexibility, interoperability, and modularity; and introduction of key competencies.
The NICE Framework describes knowledge and skill statements that provide the foundation for lifelong learners to accomplish tasks. Competencies are introduced as a way to further describe learners (employees, job seekers, and students) by grouping sets of knowledge and skills.
As a common, consistent lexicon that categorizes and describes cybersecurity work, the NICE Framework improves communication about how to identify, recruit, develop, and retain cybersecurity talent.
Finally, the NICE Framework is a reference source from which organizations, businesses or government sectors can develop additional publications or tools that meet their needs to define or provide guidance about different aspects of cybersecurity education, training, and workforce development.
Comments are due Aug. 28, 2020. Please email comments to NICEFramework@nist.gov
SP 800-181 Rev. 1 (Draft) (DOI)