Education and Training Specialty Area Qualification Matrix *

Cyber IT/CSWF Information

Associated Work Roles

  • Cyber Instructional Curriculum Developer (711)
  • Cyber Instructor (712)

Note: This page presents the qualification requirements at the Specialty Area level, a summary category one level above work roles. Until the qualification requirements for the Work Roles are released, please refer to the Specialty Area qualification table below for information. This table will be updated to reflect the specific Work Role requirements when the information is available.

Specialty Area Framework Category: Oversight & Development

Specialty Areas responsible for providing leadership, management, direction, or development and advocacy so the organization may effectively conduct cybersecurity work.

Education and Training Description

Develops, plans, coordinates, delivers, and/or evaluates instructional cybersecurity content using various formats, techniques, and venues.

Example Job/Billet Titles

  • Course Manager
  • Instructional Systems Designer
  • Professor
  • Teacher
  • Training Manager
  • Training Officer

Master Tasks and KSAs

Detailed information on the Tasks and Knowledge, Skills and Abilities (KSAs) associated with each Navy Specialty Area can be found in the Master Task & KSA List spreadsheet on the NAVIFOR website (requires credentials/CAC to access) or on the DoD Cyber Exchange website.

Initial Training

Initial training qualification for a specialty area is generally met by a High School diploma or equivalent and completion of Navy "A" school (for Navy enlisted).

Minimum Credential Requirement

You must meet one of the education, training, or certification requirements in the Qualifications Table below. See “Understanding Qualifications” on the Qualifications Table for more information on the order of precedence for the minimum credential requirement.

Qualifying Degrees

The Qualifications Table below includes college degrees in the Education section. For example, "Bachelor degree from accredited University." To view a list of degree programs that are acceptable for this Specialty Area, click List of Qualifying Degrees below or the Information icon in the Qualifications Table.

Worksheet View

Click the button to toggle in and out of the worksheet view for the qualifications table. Turning the worksheet view on will allow you to mark requirements and qualifications for your proficiency level, and then print a printer-friendly version of the matrix worksheet.

Note: The Qualification Matrix information on this page will be in a different order when printed to reduce the number of pages needed.

View Proficiency Level(s)

MilGears logo For personalized information on how your education, training and credential history stacks up against the requirements for this and other work roles in the Navy, visit the Cyber IT/CSWF Tool on the MilGears website.



Qualifications Table

All qualifications have not been met.
 
Basic Intermediate Advanced
Associate Degree from accredited University Bachelor Degree from accredited University Graduate Degree from accredited University
OR
 
CIN J-3B-0440 IP BASIC NEC 805A Instructor NEC 805A Instructor
NEC 805A Instructor    
OR
 
CompTIA A+ ce Certified Information Systems Security Professional (CISSP) CompTIA Certified Technical Trainer (CTT+)
CompTIA Certified Technical Trainer (CTT+) Certified Secure Software Lifecycle Professional (CSSLP) Information Systems Security Architecture Professional (CISSP-ISSAP)
CompTIA Security+ ce CompTIA Advanced Security Practitioner (CASP+) Information Systems Security Engineering Professional (CISSP-ISSEP)
  CompTIA Certified Technical Trainer (CTT+)  
  GIAC Security Leadership Certification (GSLC)  
AND
 
N/A PQS/JQR not appropriate for this position type N/A PQS/JQR not appropriate for this position type N/A PQS/JQR not appropriate for this position type

Note: The Qualification Matrix information on this page will be in a different order when printed to reduce the number of pages needed.

*If you have recommendations for degrees, qualifications, NECs or credentials for this matrix, direct them to NAVIFOR (requires credentials/CAC to access). Questions and recommendations regarding the Cyber IT/CSWF model, matrix, policies, implementation guidelines, and compliance should be directed to: Navy_CSWF_Program_Helpline@navy.mil

This is an official U.S. Navy websiteUpdated: January 29, 2021
TOP

Basic

Foundational understanding of computer systems and related cybersecurity software and hardware components. Ability to apply simple concepts and routine processes with frequent and specific guidance. Ability to perform successfully in routine, structured situations, or more complex situations with supervision.

Intermediate

Working knowledge and application of Information Security and security operational characteristics for a variety of computer platforms, networks, software applications, and Operating Systems. Extensive knowledge of basic concepts and processes and experience applying these with only periodic high-level guidance. Ability to perform successfully in non-routine and sometimes complicated situations.

Advanced

Application and mastery of Information Security, plans, and functions; responsible for the management of complex projects, and initiatives with large scope. An in-depth understanding of complex concepts and processes, and experience applying these with little or no guidance. Ability to provide guidance to others and to perform successfully in complex, unstructured situations.

Click link to go to CompTIA A+ ce COOL Snapshot page.

The Computing Technology Industry Association (CompTIA), CompTIAA+ ce certification validates the entry-level computer technician’s competency to perform a myriad of critical IT support tasks. CompTIA A+ ce technicians demonstrate abilities in hardware, networking, mobile devices, operating systems, hardware & network troubleshooting, virtualization & cloud computing, software troubleshooting, security, and operational procedures. Candidates must pass both the Core 1 (220-1001) and Core 2 (220-1002) exams.

Click link to go to CompTIA Certified Technical Trainer (CTT+) COOL Snapshot page.

Computing Technology Industry Association (CompTIA), Certified Technical Trainer (CTT+) is a cross-industry credential providing recognition that a training professional has mastered core instructor skills. The examinations are based on a set of objectives designed to measure the core knowledge and skills that competent instructors must demonstrate to complete an instructional assignment successfully both in a classroom and a virtual classroom environment, including preparation, presentation, communication, facilitation and evaluation. While the CTT+ Program was first created for computer training and education, the certification can be applied to all industries that provide technical training, non-technical training and education. To earn the CTT+ designation, candidates must pass both a computer-based test that assesses knowledge and a Performance Based in which the candidate demonstrates prescribed skills. There are no experience or education requirements that must be met prior to taking the exam(s).

Click link to go to Certified Information Systems Security Professional (CISSP) COOL Snapshot page.

The International Information Systems Security Certification Consortium, Inc. (ISC 2), Certified Information Systems Security Professional (CISSP) is an advanced skill level certification for experienced security practitioners, managers and executives interested in proving their knowledge across a wide array of security practices and principles. Candidates must have a minimum of five years cumulative paid work experience in two or more of the eight domains of the CISSP CBK. Earning a four-year college degree or regional equivalent or an additional credential from the (ISC)² approved list will satisfy one year of the required experience. Education credit will only satisfy one year of experience.

Click link to go to CompTIA Security+ ce COOL Snapshot page.

Computing Technology Industry Association (CompTIA), Security+ ce certification designates knowledgeable professionals in the field of IT security. Security+ ce is an entry-level certification that demonstrates a candidates knowledge and skills required to install and configure systems to secure applications, networks, and devices; perform threat analysis and respond with appropriate mitigation techniques; participate in risk mitigation activities; and operate with an awareness of applicable policies, laws, and regulations. The successful candidate will perform these tasks to support the principles of confidentiality, integrity, and availability. It is recommended that candidates hold the Network+ and two years of experience in IT administration with a security focus.

Click link to go to GIAC Security Leadership Certification (GSLC) COOL Snapshot page.

The Global Information Assurance Certification (GIAC), Security Leadership Certification (GSLC) is an advanced skill level certification for information security, information technology and security professionals with leadership responsibilities. GSLCs understand governance and technical controls focused on protecting, detecting, and responding to security issues. GSLCs display knowledge of data, network, host, application, and user controls along with fundamental management topics that pertain to the security lifecycle. There are no prerequisites for the GSLC certification. Candidates must pass a written exam.

 

 

Click link to go to Information Systems Security Architecture Professional (CISSP-ISSAP) COOL Snapshot page.

International Information Systems Security Certification Consortium, Inc. (ISC 2), Information Systems Security Architecture Professional (CISSP-ISSAP) is an advanced skill level information security certification. The architect plays a key role within the information security department with responsibilities that functionally fit between the C-suite and upper managerial level and the implementation of the security program and generally develop, design, or analyze the overall security plan. Although this role may typically be tied closely to technology this is not necessarily the case, and is fundamentally the consultative and analytical process of information security. The CISSP-ISSAP is an appropriate credential for Chief Security Architects and Analysts. Candidates must have two years experience in one or more of the six domains of the CISSP-ISSAP Common Body of Knowledge (CBK) and hold the CISSP certification.

Click link to go to Information Systems Security Engineering Professional (CISSP-ISSEP) COOL Snapshot page.

International Information Systems Security Certification Consortium, Inc. (ISC 2), Information Systems Security Engineering Professional (CISSP-ISSEP) is an advanced skill level information security certification. The CISSP-ISSEP was developed in conjunction with the U.S. National Security Agency (NSA) for systems security engineering professionals. CISSP-ISSEP is a guide for incorporating security into projects, applications, business processes, and all information systems. Security professionals may need workable methodologies and best practices that can be used to integrate security into all facets of business operations. The SSE model covered in the certification is a guide to the field of information security and the incorporation of security into all information systems. Candidates must have two years professional experience in one or more of the five domains of the CISSP-ISSEP Common Body of Knowledge (CBK) and hold the CISSP certification.

Click link to go to Certified Secure Software Lifecycle Professional (CSSLP) COOL Snapshot page.

The International Information Systems Security Certification Consortium, Inc. (ISC 2), Certified Secure Software Lifecycle Professional (CSSLP) certification is ideal for software development and security professionals responsible for applying best practices to each phase of the SDLC – from software design and implementation to testing and deployment.  Candidates are required to have a minimum of four years of cumulative paid Software Development Lifecycle (SDLC) professional work experience in one or more of the eight domains of the (ISC)² CSSLP CBK, or three years of cumulative paid SDLC professional work experience in one or more of the eight domains of the CSSLP CBK with a four-year degree leading to a Baccalaureate, or regional equivalent in Computer Science, Information Technology (IT) or related fields.

Click link to go to CompTIA Advanced Security Practitioner (CASP+) COOL Snapshot page.

The Computing Technology Industry Association (CompTIA), CompTIA Advanced Security Practitioner (CASP+) certification is for professionals with advanced-level cybersecurity skills and knowledge. CASP+ practitioners demonstrate skills in risk management, enterprise security architecture, research, development and collaboration, technical integration of enterprise security and enterprise security operations. Candidates must pass an exam that includes written and performance-based questions.