35 fixes to help solve the cyber workforce gap

Baranozdemir/Getty Images

Natalie Alms By Natalie Alms,
Staff Writer, Nextgov/FCW

By Natalie Alms

|

A new cyber workforce strategy will require the cooperation of the White House Office of the National Cyber Director, Office of Personnel Management and more to help fill thousands of public-sector cybersecurity positions.

A federal working group released a cyber workforce strategy on Wednesday meant to be a cross-government action plan with 35 to-do items to help the government respond to the talent gap for cybersecurity, increase the diversity of its cyber workforce and retain cyber professionals.

The report comes from the Federal Cyber Workforce Management and Coordinating Working group, led by the Department of Defense, Department of Veterans Affairs and Cybersecurity and Infrastructure Security Agency. 

The working group has multi-agency "action teams" to drive government-wide initiatives already, it says. One ongoing focus has been aligning the government with the standards for cyber work from the National Institute of Standards and Technology, called the National Cybersecurity Workforce Framework.

But the implementation of some of the group's recommendations will depend on action from key stakeholders like the White House's Office of the National Cyber Director (ONCD), the Office of Personnel Management and Congress.

This working group, established in 2019 and now composed of all 24 Chief Financial Officer Act agencies, isn't the only body focused on the shortage of cyber workers and associated issues. 

National Cyber Director Chris Inglis' office is already working on a broader cyber workforce, education and training strategy, meant to tackle the talent shortage and push broader awareness and education about cyber. 

Currently, there are nearly 39,000 open public sector cyber jobs, according to NIST-backed website Cyberseek.com. In total, there are over 714,000 openings. 

"This all comes at a time when threats are increasing. Our attack surface as a nation, not just within the Department of Defense, has spread out exponentially," said Patrick Johnson, one of three chairs for the working group and director of the Defense Department's Cyber Workforce Management Directorate. "This type of work… is ever more important to increase our cyberspace workforce."

But the industry remains difficult to break into, and largely homogeneous, despite the need for talent.

This latest report offers some data points showing the problem for the federal government particularly, which often struggles to compete with higher private sector salary offerings. 

Its workforce also heavily skews male – only 26% of its cyber feds are women, the report says – and old – less than 6% of the federal cyber workforce is under the age of 30. 

Related articles

A cyber workforce strategy is coming from the White House, along with an implementation body to make sure it works

Report: Fostering a diverse cybersecurity workforce

The government's cyber workforce is also less diverse than the population in terms of race and ethnicity, other reports have found. 

The report digs into three problem areas for the federal government.

First is the standards used internally to classify cyber work, which don't match the specificity of the work or evolve quickly enough, the report says. 

The panel says that human resource professionals in the government need more cyber-specific training, and that the Office of Personnel Management should update classification, qualification and assessment policies for cyber workers. 

The second problem area is sparse data about the government's cyber workforce. The report recommends that the government change workforce reporting requirements to improve data quality and streamline the collection of workforce metrics.

One ongoing effort from the working group already is the creation of a governmentwide cyber workforce dashboard, being developed alongside OPM, said group chair, Chis Paris, Senior Advisor for Cyber Workforce Management in the Department of Veterans Affairs Office of the Chief Information Officer.

Finally, the report zeroes in on the recruitment, development and retention of the government's cyber workers. 

The panel says that the government needs more pathways into the field, better defined pathways for career progression and more training opportunities, recommending things like the addition of a cyber job filter to the government's main job website, USAjobs.

The group also wants a special salary rate for the information technology 2210 occupational series – something a few agencies in the working group have already asked OPM for and are waiting to hear back on, said Megan Caposell, associate chief of workforce planning in the Office of the Chief Human Capital Officer at CISA and one of the three chairs of the working group. 

As far as implementation goes, Paris said that tactical support from ONCD will be critical. 

"Our working group is built upon the goodwill and passion, really, of its members," said Paris. "We're not congressionally mandated…We don't have cross cutting government wide authority to say that 'you must do this' or 'report back to us.'"

The working group already has a strong working relationship with the White House office, he said. The group itself can offer on-the-group tactical perspectives from its members that work on these issues, Caposell said.

NEXT STORY: AI task force aims to expand federal research opportunities beyond big tech

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.