The National Institute of Standards and Technology (NIST) has issued a cybersecurity workforce framework to help organizations develop and maintain an effective cyber security workforce.
The NIST framework, formally known as the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework, defines roles, the necessary knowledge required to fill said roles, and skills and abilities necessary for those roles. The framework also defines a common lexicon to clarify communication between cyber security educators, trainers and certifiers, employers, and employees.
These guidelines are intended to assist employers in developing their existing workforce and academic institutions in preparing the future workforce.
The framework focuses on 7 main categories: Securely Provision; Operate and Maintain; Oversee and Govern; Protect and Defend; Analyze; Collect and Operate; and Investigate.
The framework defines these categories as follows:
Read this article on InfoSecurity Magazine