Legal Advice and Advocacy (LGA)
Legal Advice and Advocacy provides legally sound advice and recommendations to leadership and staff on a variety of relevant topics within the pertinent subject domain. Advocates legal and policy changes, and makes a case on behalf of client via a wide range of written and oral work products, including legal briefs and proceedings.
Cyber Legal Advisor (OPM 731)
Work Role Definition
Provides legal advice and recommendations on relevant topics related to cyber law.
Recommended SANS Training & GIAC Certification:- LEG523: Law of Data Security and Investigations
- Certification: GIAC Law of Data Security & Investigations (GLEG)
- Certification: GIAC Law of Data Security & Investigations (GLEG)
- SEC402: Cybersecurity Writing: Hack the Reader
- LEG523: Law of Data Security and Investigations
Privacy Compliance Manager (OPM 732)
Work Role DefinitionDevelops and oversees privacy compliance program and privacy program staff, supporting privacy compliance needs of privacy and security executives and their teams.
Recommended SANS Training & GIAC Certification:- SEC301: Introduction to Cyber Security
- Certification: GIAC Information Security Fundamentals (GISF)
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- ICS456: Essentials for NERC Critical Infrastructure Protection
- Certification: GIAC Critical Infrastructure Protection (GCIP)
- SEC504: Hacker Tools, Techniques, and Incident Handling
- Certification: GIAC Certified Incident Handler (GCIH)
- SEC301: Introduction to Cyber Security
Training, Education, and Awareness (TEA)
Training, Education, and Awareness conducts training of personnel within pertinent subject domain. Develops, plans, coordinates, delivers and/or evaluates training courses, methods, and techniques as appropriate.
Cyber Instructional Curriculum Developer (OPM 711)
Work Role Definition:
Develops, plans, coordinates, and evaluates cyber training/education courses, methods, and techniques based on instructional needs.
Recommended SANS Training & GIAC Certification:- SEC401: Security Essentials: Network, Endpoint, and Cloud
- Certification: GIAC Security Essentials (GSEC)
- LDR433: Managing Human Risk
- Certification: SANS Security Awareness Professional (SSAP)
- LDR521: Security Culture for Leaders
- SEC504: Hacker Tools, Techniques, and Incident Handling
- Certification: GIAC Certified Incident Handler (GCIH)
- SEC401: Security Essentials: Network, Endpoint, and Cloud
Cyber Instructor (OPM 712)
Work Role Definition:
Develops and conducts training or education of personnel within cyber domain.
Recommended SANS Training & GIAC Certification- SEC401: Security Essentials: Network, Endpoint, and Cloud
- Certification: GIAC Security Essentials (GSEC)
- SEC504: Hacker Tools, Techniques, and Incident Handling
- Certification: GIAC Certified Incident Handler (GCIH)
- SEC501: Advanced Security Essentials - Enterprise Defender
- Certification: GIAC Certified Enterprise Defender (GCED)
- SEC402: Cybersecurity Writing: Hack the Reader
- SEC403: Secrets to Successful Cybersecurity Presentation
- SEC401: Security Essentials: Network, Endpoint, and Cloud
Security Awareness & Communications Manager (OPM 712)
Work Role Definition:
Builds, maintains and measures the organizations security awareness and communications program with the goal of securing the workforce’s behaviors and ultimately creating a secure culture.
Recommended SANS Training & GIAC Certification- LDR433: Managing Human Risk
- Certification: SANS Security Awareness Professional (SSAP)
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- LDR521: Security Culture for Leaders
- SEC402: Cybersecurity Writing: Hack the Reader
- SEC403: Secrets to Successful Cybersecurity Presentation
- LDR433: Managing Human Risk
Cybersecurity Management (MGT)
Cybersecurity Management oversees the cybersecurity program of an information system or network; including managing information security implications within the organization, specific program, or other area of responsibility, to include strategic, personnel, infrastructure, requirements, policy enforcement, emergency planning, security awareness, and other resources.
Information Systems Security Manager (OPM 722)
Work Role Definition:
Responsible for the cybersecurity of a program, organization, system, or enclave.
Recommended SANS Training & GIAC Certification- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- MGT514: Security Strategic Planning, Policy, and Leadership
- Certification: GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- LDR520: Cloud Security for Leaders
- LDR521: Security Culture for Leaders
- LDR553: Cyber Incident Management
- LDR551: Building and Leading Security Operations Centers
- Certification: GIAC Security Operations Manager (GSOM)
- SEC504: Hacker Tools, Techniques, and Incident Handling
- Certification: GIAC Certified Incident Handler (GCIH)
- SEC488: Cloud Security Essentials
- Certification: GIAC Cloud Security Essentials (GCLD)
- MGT512: Security Leadership Essentials for Managers
COMSEC Manager (OPM 723)
Work Role Definition:
Manages the Communications Security (COMSEC) resources of an organization (CNSSI No. 4009).
Recommended SANS Training & GIAC Certification- SEC301: Introduction to Cyber Security
- Certification: GIAC Information Security Fundamentals (GISF)
- Certification: GIAC Information Security Fundamentals (GISF)
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- Certification: GIAC Security Leadership (GSLC)
- MGT553: Cyber Incident Management
- SEC301: Introduction to Cyber Security
Strategic Planning and Policy (SPP)
Strategic Planning and Policy develops policies and plans and/or advocates for changes in policy that supports organizational cyberspace initiatives or required changes/enhancements.
Cyber Workforce Developer and Manager (OPM 751)
Work Role Definition:
Develop cyberspace workforce plans, strategies and guidance to support cyberspace workforce manpower, personnel, training and education requirements and to address changes to cyberspace policy, doctrine, materiel, force structure, and education and training requirements.
Recommended SANS Training & GIAC Certification
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- MGT514: Security Strategic Planning, Policy, and Leadership
- Certification: GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- LDR521: Security Culture for Leaders
- LDR553: Cyber Incident Management
- MGT512: Security Leadership Essentials for Managers
Cyber Policy and Strategy Planner (OPM 752)
Work Role Definition:Develops cyberspace plans, strategy and policy to support and align with organizational cyberspace missions and initiatives.Recommended SANS Training & GIAC Certification
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- MGT514: Security Strategic Planning, Policy, and Leadership
- Certification: GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- LDR521: Security Culture for Leaders
- LDR553: Cyber Incident Management
- MGT512: Security Leadership Essentials for Managers
Executive Cyber Leadership (EXL)
Executive Cyber Leadership supervises, manages, and/or leads work and workers performing cyber and cyber-related and/or cyber operations work.
Executive Cyber Leadership (OPM 901)
Work Role Definition
Executes decision making authorities and establishes vision and direction for an organization's cyber and cyber-related resources and/or operations.
Recommended SANS Training & GIAC Certification
- MGT514: Security Strategic Planning, Policy, and Leadership
- Certification: GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- LDR521: Security Culture for Leaders
- LDR553: Cyber Incident Management
- MGT514: Security Strategic Planning, Policy, and Leadership
Program/Project Management (PMA) and Acquisition
Program/Project Management and Acquisition applies knowledge of data, information, processes, organizational interactions, skills, and analytical expertise, as well as systems, networks, and information exchange capabilities to manage acquisition programs. Executes duties governing hardware, software, and information system acquisition programs and other program management policies. Provides direct support for acquisitions that use information technology (IT) (including National Security Systems), applying IT-related laws and policies, and provides IT-related guidance throughout the total acquisition life-cycle.
Program Manager (OPM 801)
Work Role Definition
Leads, coordinates, communicates, integrates and is accountable for the overall success of the program, ensuring alignment with critical agency priorities.
Recommended SANS Training & GIAC Certification
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- MGT514: Security Strategic Planning, Policy, and Leadership
- Certification: GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- MGT512: Security Leadership Essentials for Managers
IT Project Manager (OPM 802)
Work Role DefinitionDirectly manages information technology projects to provide a unique service or product.Recommended SANS Training & GIAC Certification
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- MGT525: Managing Cybersecurity Initiatives and Effective Communication
- Certification: GIAC Certified Project Manager (GCPM)
- MGT514: Security Strategic Planning, Policy, and Leadership
- Certification: GIAC Strategic Planning, Policy, and Leadership (GSTRT)
- MGT512: Security Leadership Essentials for Managers
Product Support Manager (OPM 803)
Work Role DefinitionManages the package of support functions required to field and maintain the readiness and operational capability of systems and components.Recommended SANS Training & GIAC Certification
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- MGT525: Managing Cybersecurity Initiatives and Effective Communication
- Certification: GIAC Certified Project Manager (GCPM)
- MGT512: Security Leadership Essentials for Managers
IT Investment/Portfolio Manager (OPM 804)
Work Role DefinitionManages a portfolio of IT capabilities that align with the overall needs of mission and business enterprise priorities.Recommended SANS Training & GIAC Certification
- MGT512: Security Leadership Essentials for Managers
- Certification: GIAC Security Leadership (GSLC)
- SEC401: Security Essentials: Network, Endpoint, and Cloud
- Certification: GIAC Security Essentials (GSEC)
- SEC504: Hacker Tools, Techniques, and Incident Handling
- Certification: GIAC Certified Incident Handler (GCIH)
- MGT512: Security Leadership Essentials for Managers
IT Program Auditor
Work Role Definition
Conducts evaluations of an IT program or its individual components, to determine compliance with published standards.
Recommended SANS Training & GIAC Certification- AUD507: Auditing Systems, Applications, and the Cloud
- Certification: GIAC Systems and Network Auditor (GSNA)
- SEC460: Enterprise and Cloud | Threat and Vulnerability Assessment
- Certification: GIAC Enterprise Vulnerability Assessor (GEVA)
- SEC402: Cybersecurity Writing: Hack the Reader
- SEC403: Secrets to Successful Cybersecurity Presentation
- AUD507: Auditing Systems, Applications, and the Cloud