The NICE Workforce Framework for Cybersecurity (NICE Framework) (NIST SP 800-181 Rev. 1) is a fundamental reference for describing and sharing information about cybersecurity work. It is a key resource for introducing cybersecurity careers and learning more about the wide variety of cybersecurity roles that exist. A NICE Framework K12 FAQ is now available to help K12 educators better understand how the NICE Framework can be used to familiarize students with cybersecurity concepts, to help students explore cybersecurity work and chart paths for future learning, to develop K12 cybersecurity-specific content, and more. It also provides links to related resources for K12 cybersecurity education and to opportunities to engage with other K12 cybersecurity educators in the NICE community.
The National Initiative for Cybersecurity Education (NICE) Workforce Framework for Cybersecurity (NICE Framework) (NIST Special Publication (SP) 800-181 Rev. 1) was first published at NIST in 2017 and revised in November 2020. The NICE Framework comprises NIST SP 800-181, which describes the framework structure itself, and the NICE Framework data – Task, Knowledge, and Skill (TKS) statements, Work Roles, and Competency Areas – which is maintained in separate spreadsheets to provide for a streamlined and agile updating process. The data is currently being updated; the publication, most recent spreadsheet, and draft updates can be found in the NICE Framework Resource Center here.
The NICE Framework establishes a standard approach and common language for describing cybersecurity work and learner capabilities. This approach allows for the establishment of regular processes for use in career awareness, education and training, hiring and career development, and workforce planning and assessment. It is used in both the public and private sectors by employers, learners, and education, training, and certification providers.
At its foundation are the NICE Framework building blocks of Task, Knowledge, and Skill (TKS) statements that describe the work and what someone needs to know or do to complete that work. These are applied via Competency Areas and Work Roles.
A Work Role represents a grouping of Task statements for which an individual or team is responsible. Work Roles help define positions – which may be responsible for one or more roles – within an organization. A Competency Area is a cluster of related Knowledge and Skills statements that correlates with one’s capability to perform Tasks in a particular domain. Competency Areas can help learners discover areas of interest, inform career planning and development, identify gaps for knowledge and skills development, and provide a means of assessing or demonstrating a learner’s capabilities in the domain. Competency Areas provide a mechanism for employers to assess candidates and for education and training providers to assess learners.
Learn more at the NICE Framework Resource Center.
No. The Framework for Improving Critical Infrastructure Cybersecurity (NIST Cybersecurity Framework) is a separate framework that focuses on voluntary standards, guidelines, and best practices for managing cybersecurity risk. The NICE Framework focuses on how to manage cybersecurity risk by identifying the work that is needed to be done (i.e., the Tasks involved) and what an individual or team needs to know or do (i.e., the Knowledge and Skills) to complete the Tasks. Both frameworks were developed at the National Institute for Standards and Technology (NIST) and work closely together in identifying core cybersecurity work.
The NICE Framework is used in both the public and private sectors by employers, learners, and education, training, and certification providers. Learners is a term used in the NICE Framework to mean students, job seekers, and current employees alike. It is intended for use across industries and in small, medium, and large organizations. It is used in the United States and internationally. Examples of how the NICE Framework is used include:
The NICE Framework defines 52 cybersecurity Work Roles, which are organized into seven broad Categories: Securely Provision, Operate & Maintain, Oversee & Govern, Protect & Defend, Investigate, Analyze, and Collect & Operate. The Categories serve as an entry point for teaching students about cybersecurity concepts and vocabulary. For example, someone working in the Securely Provision category is involved in designing, procuring, or building secure technology systems, with responsibility for aspects of system or network development.
Teachers and counselors can refer to the Work Roles and accompanying descriptions to introduce students to the wide variety of work in the field. For example, a Secure Software Assessor (one of 11 Work Roles under the Securely Provision Category) analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.
Examples: The NICE website includes a library of videos depicting “A Day in the Life” of cybersecurity practitioners at businesses, academic institutions, and government agencies. The videos are organized by NICE Framework Category, and each presents a different Work Role. Learn more at NICE Framework Work Role Videos | NIST.
The NICE “Framework in Focus” series profiles cybersecurity practitioners working in a wide variety of roles. The profiles include recorded interviews, allowing students to hear firsthand how practitioners got into the field, the education and training they received, the Work Roles they have held, and how they use the NICE Framework in their jobs.
NICE Framework Work Roles are composed of Tasks that constitute work to be done; Tasks include associated Knowledge and Skill statements that represent a learner’s potential to perform those Tasks. Teachers can use the Task, Knowledge, and Skill (TKS) statements to prepare students for entering the workforce or continuing into higher education by helping them discover the type of cybersecurity careers available that they may be interested in and the corresponding knowledge and skills that will help qualify them for those careers.
Example: At the Career Technical Education Cyber Academic Pathway at Canyon Springs High School in Moreno Valley, California, students use the NICE Framework to connect Tasks, Knowledge, and Skills to the specific careers they are interested in pursuing.
Cybersecurity games, competitions, and club activities can be built around NICE Framework Work Roles, Competency Areas, or Task, Knowledge, and Skill (TKS) statements. Connecting activities to NICE Framework Categories, Work Roles, TKS statements, and Competency Areas creates learning experiences that reflect exciting, real-world challenges, while acquainting students with the concepts and language used in higher education, industry, and government.
Example: The NICE Challenge Project offers cybersecurity challenges within virtualized business environments to give students workforce experience before they enter the workforce. The challenges are mapped to NICE Framework Categories, Work Roles, and TKS statements. For example, the “DASWebs Inc.” challenge is focused on the Operate and Maintain Category. The program, which is available free of charge to educators and students, also generates assessment data about knowledge, skills, and abilities. Educator training is available for teachers who want to learn more.
Cybersecurity content can be developed around NICE Framework Competency Areas or Work Roles and mapped to Task, Knowledge, and Skill (TKS) statements. These components reflect current workplace requirements, enabling educators to focus on the skills and knowledge that employers demand. By building curricula around the NICE Framework components, K12 educators promote skills- and competency-based learning and the development of demonstrable cybersecurity capabilities.
Example: The Palo Alto Network Cybersecurity Academy maps its courses to the NICE Framework Work Roles and TKS statements. The Enterprise Security Management course, for instance, maps to the Systems Security Analyst Work Role. High schools and colleges that join the network have access to the free curriculum, hands-on labs, and faculty training
The NICE Framework spells out the knowledge and skills needed to perform cybersecurity tasks in today’s workplace. A number of organizations that partner with NICE have mapped the NICE Framework components to career pathways and job availability data. These tools illustrate the great demand for cybersecurity practitioners in today’s workplace and the education levels needed for different Work Roles.
NICE works to support the K12 education community in a variety of ways, including co-sponsoring the annual NICE K12 Cybersecurity Education Conference, the annual Cybersecurity Career Awareness Week, and the NICE K12 Cybersecurity Education Community of Interest (COI). The K12 Cybersecurity Education COI is a forum for K12 teachers, school administrators, local and state education agencies, non-profit organizations, federal agencies, institutions of higher education, and others who are interested in sharing and learning how to grow and sustain diverse students pursuing cybersecurity careers through learning experiences, exposure to career opportunities, and teacher professional development. The group is open to all and meets monthly via video conference. Visit the COI’s webpage for information on how to become a member.
The NICE Community Coordinating Council is made up of three working groups and four communities of interest that meet monthly via video conference. In addition, the NICE Framework Users group hosts an ongoing discussion via a mailing list forum. Information on becoming a member of the council or any of its groups is available here.