cyber in-security strengthening the federal cyber security workforce-[2009[1].07.22]

8/6/2019 Cyber in-Security Strengthening the Federal Cyber Security Workforce-[2009[1].07.22]

1/36

July 2009

CyberIN-securItyStrengthening the Federal Cybersecurity Workorce


2/36

P a r t n e r s hi P o r P u b l i c s e r v i c e | b o o z a l l e n h a m i l to n

T Prrhip or Publi Sri i opri, opro orgizio h ork o riliz h rl gormby ipirig grio o r by rormig h y gorm ork.

Booz All Hmilo h b h orro o mgm oulig or bui gorm or mor h yr. Proiig oulig ri i rgy, oprio, orgizio hg, iormio hology, Booz Alli h o rm h hlp li ol hir ough problm, orkig by hir i o hlp hm hi hir miio.Booz All i ommi o lirig rul h ur.


3/36

c y b e r i n - s e c u r i t y | s t r e n g t h e n i n g t h e e d e r a l c y b e r s e c u r i t y W o r k o r c e

Pri Obm h lr ybruriy o b o oh mo riou oomi iol uriy hllg- io. Criil gorm pri-

or ompur ork r ur o k romorig io, rimil group, hkr, iru rir rrori orgizio.

T pri u i ombig h hr hy o h io ill p o implmig om-prhi oori rgy gol h muilu builig ibr, highly ri iybruriy orkor i hi oury.

Whil h rpoibiliy or urig our io om-pur ork i hr by h publi pri -

or, our rl gorm mu k lrhip rol.T i hy h Prrhip or Publi Sri Booz All Hmilo xmih o h rl y-bruriy orkor byiriig xpr ii oui o gorm, xmiig publi -imoy, rpor ou-m. T Prrhip Booz All hl o-u group uryrl hi iormioor (CIO), hi i-ormio uriy or(CISO) hum r-our (HR) oil rl gi.

T rul o hi rrh r roublig , i myy, milir.

Wih mo Amri, i oul hrly o lrm o

hr h our rl orkor igi hllg,uh iuly i rruiig riig highly killorkr, rli o oror o ll l gp, poormgm r pro h urmi m-ploy prorm, lk o ooriio h lom gi ompig gi o ohr or l.

Securing Our Nation's Cyber Inrastructure, Sph by Pri Obm, My, . http://www.whitehouse.gov/the_press_ofce/Remarks-by-the-

President-on-Securing-Our-Nations-Cyber-Infrastructure

Wh houl g popl io i h h hgorm-i problm r priulrly u ihih rl ybruriy orkor, rig poil or

mjor ulrbilii or our iol uriy.

T orriig ig o our lyi i h our rlgorm ill b ubl o omb h hr ih-ou mor oori, ui or o ir ybr-uriy xpri i h rl orkor.

D Srry Robr G h h h P-go i prly hor o popl ho h pbili-i (i oi ybruriy r kill) i llh ri h o r i. Our iriorm h hi i i hr ro gorm. Tr-

ourh o CIO, CISO, I hirig mgr HRproiol ury or hi rpor i rig kill

ybruriy l oulb high or op prior-iy hrough h x ol yr.

o ll urr gp, g-i look oui gor-m or iormiohology (I) l. Forxmpl, oil hDprm o HomlSuriy im h pr o h ih o o i CIO rpri oror. Go-rm o oly o rrui ri mor

popl ih ybruriy xpri, i mor popl ho ily mg h bl ybruriyorkor.

T ohr ky ig o our rrh i h umrouor hmpr gorm biliy o buil op-ohybruriy orkor, mkig i iul o ll riill gp.

E x E c u t i v E S u m m a r y

Our rl gormill b ubl o ombh hr ihou mor oori,

ui or o irybruriy xpri ih rl orkor.


4/36


Our lyi rl our primry hllg h hr- h quliy quiy o our rl ybruriy

orkor.

1. Te pipeline o potential new talent is inadequate.Aorig o our ury, oly pr o CIO, CI-SO I hirig mgr r i or ry i- ih h quliy o ppli pplyig or rlybruriy job, oly pr r i orry i ih h umbr o quli i ho r pplyig. Our gorm ru u-ul holrhip progrm o ll bou ry-llybruriy job ih r gru, bu oily h i muh grrlor o , gru-

yr. For mi- ior-ll poiio, ogorm-i r progrm xi ll. Morbroly, hr r or h Amri i o l-opig ough I xpr, rig lbor horg iboh h publi pri or.

2. Fragmented governance and uncoordinated leader-ship hinders the ability to meet ederal cybersecurity

workorce needs. Hum pil mgm i hrl gorm i rliz. Lik ohr -or o our rl orkor, hr i o o i go-rm i hrg o ybruriy orkor pl-ig or iio mkig. No o iri or hirpor oul proi oil ou o h umbro popl i our gorm ybruriy ork-or. I hi rgm lim, prm gi r o hir o omim orkig ro-purpo or i ompiio ih o ohr.

3. Complicated processes and rules hamper recruit-ing and retention eorts. Our rl gormh ooriouly umbrom hirig pro, hih

r l o ll yp rom rig gormri, hr r my ohr ymi problmh ri hllg or our ybruriy orkor.Ho job r li imp mgr biliy obrig i popl ih h righ kill, bu gormi oprig ih ou o gu jobliio hm or iormio uriy. O o

gorm ompur i job gori lup i , bor h Ir i-. I iio, hr r o uiorm gorm-

i riio r or pi job gori,o rl rr ph or ybruriy pili, i-ui piliz riig or orkr o upgrkill lry p h lg h pri or.

4. Tere is a disconnect between ront-line hiring man-agers and governments HR specialists. Wihi g-i, hirig mgr hum rour o ro o o h m pg. Our ury rl h

ro-li mgr r oily l i ihh or o hir ybruriy l h hirpr i HR. I iio, pr o h CIO/CI-SO pr o HR mgr rpor bigihr ii or ry ii h ll o ol-lborio ih h O o Prol Mgm(OPM), hih houl proi il uppor or g-i lookig o quir kill ybruriy orkr.

Alhough our rrh rl umbr o problm ih h o our rl ybruriy orkor, ilo uor my uul rgi o hir r-

i op I l iiiul gi.

B o h b pri, hi rpor oi ior h gi o righ o o r ririil ybruriy l. T rommio or

y o rrui i, mrk job, l l brig l o bor.

I iio o h ip, hi rpor lo ilu rom-mio or h Whi Hou, OPM Cogr or h mor ymi problm hih urmi hhlh o our rl ybruriy orkor. I priu-lr:

Th Whit Hos cscit cooiato, wh sig-

at Psit Oama, sho op a gomt-

wi statgic pit o mtig ct a t c-

scit mpomt s, wokig cos with OPM

Memorandum or the Heads o Departments and Agencies, Pr R. Orzg,Diror o O o Mgm Bug, Ju , .

Position Classication Flysheet or Computer Science Series, GS-1550, Jury.

I o lr h hi ybrhr i o o h moriou oomi ioluriy hllg

io. I lo lr h ro prpr houlb, gorm or oury.Pri Brk Obm, My ,


5/36


a agc as to op a impmt this pa. It

sho ic th opmt o toos to mas th

hath o o cscit wokoc a poi gi-

ac o th appopiat o si os o cii sats

a o piat cotactos.

Mch ik o gomt i ig th spac ac, th

Whit Hos sho a a atiowi ot to coag

mo Amicas to op tchoog, math a scic

skis. I cojctio with this ot, Cogss sho

xpasio o th sccss pogams that poi ga-

at a gaat schoaships i compt scic

a cscit s, sch as th Schoaship o S-

ic pogam, i t o a commitmt to gomt

sic.

K gomt picipas i th s, itigc

a ciiia iomatio scit s, oght togth

th ictio o th Whit Hos cscit coo-

iato a th Oc o Pso Maagmt, sho

ach agmt o w, p-to-at jo cassicatios ocscit ctios i gomt a staish cti-

catio imts o ach jo catgo.

Ths w jo cassicatios sho th asis o OPM

to map a cscit ca path statig at th t-

.

Cogss sho poi sigicat ig to tai -

a cscit woks to mt th w staas a

to poi mpos with cotia oppotitis to

pga a impo thi skis to sta at th top o thi

gam.

Ist i maagmt skis, too. Its ot ogh to cit

a tai iiias with tchica cscit xp-

tis. Agcis aso to ocs o opig a ca o

maags with th skis to cti a a mti-scto

cscit wokoc.

I aitio to hacig ct ots to stami th

a hiig pocss, OPM sho gi agcis gat

hiig fxiiitis.

T pri h plg h gorm ompur -ork ill b ur, ruorhy, rili, h

hi miirio ill o ryhig poibl o r,pr, , gi k.

Ahiig h gol rquir i, highly ri ll-mg gorm orkor. Filur o -r h gorm riil ybruriy orkor ill urmi h pri ommim, oul rul i ir ulrbiliy o ym h hy hou.


6/36


W o or o ioruul ybr iruior-h-, pirou lo, h

k mrly o oi hm.I rquir bro lli oprm, gi, iury lr o ouo ourig h hr,miigig ulrbilii, hig riliy iorr o prr our ioluriy, iol oomy, publi lr.Di Blir, Diror o Niol Illig

Hrig o Aul Tr Am o h IlligCommuiy or h S Sl Commi o Illig,Fbrury ,


7/36


1

i n t r o d u c t i o n

T Ui S i ig hrig urligk gi riil gorm ompur ymh hol miliry iol uriy r, o-

il rl oum prol iluigSoil Suriy umbr, mil x ror.

Som ll i ybr r, i orig por hilr h -mil o D Srry Robr G,ol rom h Pgo mo hologilly ghr irr, hk S Dprmompur h lril gri. Tr r millio omp o pr igil ork i hr h b hou upo hou o iru-io yr io iili gy ompur.

Diror o Niol Illig Di Blir ou lrm i Fbrury , llig Cogr h gor-m ompur ym r big rg or piogby orig io uh Chi Rui, ll by rimil group iiiul ho my oirup por, ommuiio or il ym. TGorm Aoubiliy O (GAO) rlir hiyr rpor k i h biliy o o mjorgi o or pr ybr k, ii-gor i h ul ho f r orr brorry o rl oprio ill rmi u-ry rik o ru, miu, irupio.

Pri Obm i My ou r-gy l rom h Whi Hou h ilu ppoimo ybruriy oorior ho ill b rpoiblor orhrig igrig ll ybruriy poli-i or h gorm.

T Whi Hou pl i ig o orom y-m o bururi ofi, rqu ur bl ouig li o uhoriy h h uru h go-rm i i proig h io igil

ork.

T priil ommim ollo priou -or o l ih h ybruriy hllg by boh hClio Buh miirio Cogr. Tih ilu hr mjor Whi Hou iri, bil-

High Risk Series: An Update (GAO--), Gorm AoubiliyO, Jury .

Surig Our Nio' Cybr Irruur, Sph by Pri Obm,

My , . hp://.hihou.go/h_pr_o/Rmrk-by-

h-Pri-o-Surig-Our-Nio-Cybr-Irruur

lio o ollr i uig ogriol mo riy o l.

T priou iiii b, hor, h gi io o ruil lm i h ybr rbuilig h pbiliy libr o h gormybruriy orkor.

T xmiio o h ybruriy orkor by hPrrhip or Publi Sri Booz All Hmiloou rl lr hm, iluig riou horgo highly kill ybruriy pili i gorm, b o oori lrhip o ybru-riy orkor iu, pi ogoig or by h CIOCouil, iiiul gi ohr.

Ti uy look h obl h h ork gibuilig op-oh orkor xmi h ur-r pproh u by gi o orom hurlo ig, hirig riig ybruriy l. Wgi oi o or problm by hirig iormio uriy mgr, highligh om ohir u mk rommio or ymihg o bl gi o kp h lhy .

T high or rom h Whi Hou bouybruriy or ph or grr oirio oh riil orkor iu. Brigig bou rorm mig h groig r-mor ophi-i ybruriy orkor rquirm ill o by, bu i mu b iol prioriy.


8/36


2

F i n d i n g S

GOvernMenT needS MOre

SKIlled CyberSeCurITy PrOeSSIOnAlS

W ior bro grm h our gorm -

riou horg o highly kill ybruriy pro-iol, prol i h xi mi omiouily rpor o igil iruio h hr li miliry ork, prol oil , h oury riil lroi bkbo, iluigour il, iio lril por ym.

D Srry Robr G h h h P-go i prly hor o popl ho h [i oi ybr r kill] i ll h ri h o r i.

Our rrh orm hi high ll m.

I ury ou rl gi ub-ompo h hir ybruriy l, 6 pr orpo rk rruiig kill ybruriy l- high or op prioriy hrough h x o -l yr. T or mor ork o ybruriy igroig. T p o hg k i h ybr ri o goig o op, puy hi hum pil or(CHCO) rom mjor prm ol u.

A CIO ohr lrg rl prm o, Ahigh ll o l i o b i. T rolply by ybruriy i h prm h hgrom orr o or rl-im moiorig o u-riy. Tr i or mor il kill poliy, urig o op iu. T rol hhg h i ry high.

A illig gy oil h rib riil hir-ig or ybruriy pili i mjor -rl prm o uppor o impor pri-il iol uriy iri, hil V Hih,

h CIO h Jui Dprm o-hir o hCIO Couil Iormio Suriy ubommi, ipopl ih ybruriy kill r mog h mo i-ul o i o h mo iulpilly hgoo o.

Al Pllr, iror o rrh h S Iiu, orgizio h proi high-ll iormio uri-y riig riio, i h lk o high-librybruriy prol i riil problm or h go-

rm. Tr i ril horg o popl ho gh i ybr pprio r, ggror ulrbiliy ly, i Pllr. My i i i

orr o mgiu hor, or o hor.

A ul ury o rl CIO rpor i Fbru-ry by h iury r oiio hAmriou h I uriy h op CIO hllg, i-luig riil kill horg, pilly or hil ih riio. T CIO lo rpor o-r bou rirm-ligibl mploy, rrui-ig, rio riig.6

t c

T rpo mo gi h b o ur o o-ror o prorm ii gorm iormiohology ork, iluig ompur ork -uriy, ulrbiliy lyi, iruio io, igilori proool lyi.

T umbr o oror oig ybruriy ork irl gi i o ilbl, h oror-o-gorm mploy rio ri by gy. Bu ior-mio hology xpr ii oui gor-m uiormly rpor h oror ou or mjoriy o h ybruriy orkor rl pr-m, iluig h Dprm o Ergy, D Homl Suriy.

A CISO o mjor gorm prm rporh h ull-im mploy probbly oror.

Mrgr Gr, h ig CIO h Dprm oHoml Suriy, ol Hou Origh Go-rm Rorm ubommi o My , , h

o-hir o pproximly 6 mjor ym i u ih prm ri i oror ilii.

T ipor grl o DHS rpor i Spmbr h oor ou or pr o h o-l o h prm o o h CIO.

6 hAmri CIO Sury h Aul Eiio

Progress Made in Strengthening DHS Inormation echnology Management,But Challenges Remain (OIG--), Dprm o Homl Suriy, O- o h Ipor Grl, Spmbr


9/36


10/36


4

proool lyi, iruio io, i h o h miliry illig ommuii, igilxploiio k.

Our ury o CIO, CISO hirig mgr ou pr r ii or ry ii ih humbr o quli ppli or iormio uriy

opig, o-hir r ii or ry ii- ih h quliy o h i HR rrr ohm. T ury lo ou h pr r i-i or ry ii ih h umbr o i

ho p job or.

A July GAO rpor, Cyber Analysis and Warning:DHS Faces Challenges in Establishing a ComprehensiveNational Capability, i iuli hirig ri-ig quly ri ybruriy ly i DHSO o Cybruriy Commuiio (CS&C)Compur Emrgy Ri m (US-CER). US-

CER i h ol poi or h gorm irio ih rl orl ii or ybr-rllyi, rig, iormio hrig, mjor iirpo iol-ll rory or. I i lohrg ih imiig ybruriy iormioo impro rig rpo o k.

Obiig riig quly ri ybr -ly quirig up-o- hologil ool o im-plm h lyi pbiliy ribu i ogoighllg o US-CER ohr lyi rigr, hirig hir biliy o rpo o irigly

, imbl, ophii ybr k, i hGAO.

T problm ih h mou o ilbl ybruriyl x byo gorm.

L. Grl Willim Shlo, h CIO o h O oh Srry o h Air For, ol Hou Origh Gorm Rorm ubommi i My h i rm o hil xpri, h, rily, or log ih ryo l i h io hhr ju o h my popl omig ou o ourhool h r prpr or h hil yp o ork.

Ty o h h uiol bkgrou, hui mh, girig i, ho or o hig,h i.

s sp P t s

By r h mo impor our o ry-ll hirigr holrhip progrm, pilly h Sholrhipor Sri Progrm (SFS)ru by DHSOPM h Niol Si Fouio (NSF), h mllrDprm o D (DOD) Iormio Aur

Sholrhip Progrm.

SFS i h rl gorm mo uul, bu illlimi, pipli or youg ybruriy l. Com-moly ko h Cybr Corp, h progrm oh bou u roll rl oz ollg uirii ig Cr or Ami Ex-ll i Iormio Aur Euio. Approxi-mly pr r i mr gr progrm; hr r orkig or oor bhlor gr.

Abou , u h k pr i SFS i i r i ; mor h h gru -r gorm ri o ompl hir o-yr r-i ommim or h yr o holrhip uppor.T hirig pro i rmli or mo SFS i,i gi u ir hir uhoriy or h

job ri GS- or bo, or u u progrm, uh h Frl Crr Ir Progrm (FCIP) or h Su- Crr Expri Progrm (SCEP).

Whil bou SFS u urrly gru hyr h mo io rl ybruriy job, o-il y h i muh grr. Vior Pioroki,

h o h SFS progrm, i priil ybr-uriy iri im h b ,uh gru r ry yr.

SFS uig h rg bou $ millio yr.T Cybr Suriy A o , irou by S.Jy Rokllr (D-W.V.) o orhul h gormompur uriy ppru, oul rmilly i-r SFS pig o $ millio or yr ou up o , ybruriy holrhip pr yr.

I h p rl yr, gorm gi h om-

p ih h ohr or Cybr Corp gru. TNiol Suriy Agy (NSA) DOD h hirh mo SFS gru, uig om o l lik ho gi h up h b i i om i- bu o or o highr py. O gy m job or o SFS i oly hr oir h opporuii. Aohr gy HR pro-iol i, W r oubi by ohr giFBI,NSA, DHS. Ty h go xpio hr hy hir y ll... popl jump hip go o NSA.


11/36


5

IllInG ederAl CyberSeCurITy PIPelIneS WITH unIverSITy STudenTS

shoahip fo svi (sFs)

Ppc 2000 p w p .

s

a 120 ss . c 225 : 80 p p, w w , p . t p1080; 870 .

P PP , , p $8,000 p w , $12,000 p w . m w w ; w q p .

t p n s 34 . t p, nsa dhs c a ex i a e.

J Pns p J ss w p. i J 2009 w 69 j 120 .

h P aa p. s p oPm W www..p.. g W , pp xp p,, p p pp.

a ss pp 2210 p gs9 w .

p, pp ss p p p x, p, c i P ciP, sc exp P sceP, ppp p p wp p 5 cr 213.3102.

Dfn Dpamn Infomaion Aan shoahip Poam (IAsP)

Ppt q p w P .

P dpnd dp p sceP p dod w dod w . s p w dod p p, w p w. c dod p a i t WP a b o; i r m c n d u W, d.c. p w 27p ; n P s m, c..

stw 30 w p ; 25 30 p p p.

P PP dod , q , , xp, pp qp; p $10,000 p ; $15,000 . rp p. c dod p p .


12/36


6

B Fil Yr 6 Jury , NSA hir SFS u DOD hir o h ligiblSFS u. Hor, ll o h gi h u hprogrm h pok ih ill i i goo ouro quli ry-ll l pi irgy om-

piio.

DOD opr omprbl ybruriy progrmh Iormio Aur Sholrhip boh r-ruim rio ool. I i ilbl o ollgu, D Dprm iili mploy miliry or, ho puru ui i uriy,ork uriy ohr iormio uriy pil-i hool ig Cr or Ami Ex-ll i Iormio Aur Euio. Eh yr,DOD r - rruim holrhip orollg u ohr - rio holr-

hip o miliry iili mploy.

T u ho ri holrhip r rquir or irhip hrough SCEP ih DOD urigbrk i h hool yr ork or DOD r hygru. DOD pir u ih ubompogi h hy r, o ho gi r hlr pro rly.

Curr DOD iili miliry mmbr hool ihr ull- or pr-im o r mr or o-orl gr. Ty oiu o b pi hir lri uiio, book ohr xp r or. Miliry iili mploy gr o r hr yr or ryyr o uio or by h holrhip.

I iio o pig upo h impor pipliprogrm or ry-ll u, om gorm HRoil y hy go irly o ollg mpu hbuil rliohip ih rr oulor ompur girig prm. For xmpl, HR oil GAO rrui ry yr l uirii, i -iio o hirig ry-ll l hrough SFS.

T Pgo i lo poorig iol ompiioor high hool ollg u h hir killi kig ig igil rg, lig rig ho ohr h ol i. Forb mgzi

rpor i My h l priip ill brrui or ybruriy riig mp i h ummro ru by h miliry u by pri om-pi. Ohr oul b or irhip giiluig NSA h Dprm o Ergy.

n cp t s hl P

Alhough om gi prr o brig i l ry-ll hir o hy ri hm o h h killhy , mo lo xpri, highr-ll m-

ploy. A rury oil i hi prm hirig or ybruriy i h mi-rg, uully popl h GS-, - - ll.

CIO hir hum rour ourpr primrilyrly o limi umbr o y o r xpril. Mo xpri mi- ior-ll hirigi o by poig job o h USAJOBS.go Wb i.rr o xpri prol b gi b impor l our, ih my omig romDOD.

T Frl Ergy Rgulory Commiio (FERC)look or l i ompi i iuri urgoiglyo. Ohr k mploy ollgu o ilyrr popl hy ko ho my h kill, ir-ul job oum o oror lry ork-ig ih hm, go o proiol oiio m-ig o rh or i.

Forb, Pentagon Seeks High School Hackers(My , )

table 1

ss graduate hires by agency y 2006 J 2009

An

Fy

2006

Fy

2007

Fy

2008

toa

Hi

national security agency 53 31 29 113

deense 34 32 26 92

ederally unded research and

develoPment centers rdc*

27 25 12 64

central intelligence agency 11 3 3 17

government accountability oice 10 4 3 17

ederal reserve system 5 5 3 13

Justice 5 3 2 10

homeland security 0 6 3 9

commerce 3 3 2 8

treasury 0 2 4 6

o a* 16 29 13 58

t p 01/30/09 164 143 100 407

Sour: Niol Si Fouio, SFS progrm

*FFRDCS Ohr Agi ilu CMU/Compur Emrgy R-po m (CER), Arop Corporio, NSEP Bor Fllohip,

EMRC/iiio o NM, JHU/APL, Iiu or D Alyi (IDA),

Brookh, Mir Corp, Iho Niol Librry, Lr Lirmor N-iol Lborory, Arroy Cr, Pi Norh Niol Lborory

(PNNL), Lo Almo Niol Lb, Army Sor Egirig Iiu,

Si Lborory


13/36


7

uriy, bu o proi o ybruriy,i Bily. I rpily mrgig r. Cybruriy o gy m o hig ohr i momhig l. I mk i iul o op orriy o problm h i i o uirlly or gr o o i mig.

Wihou rl oorior, i i o urpriig h ou lil i o gi orkig oghr oir r o rl opporuii i ybru-riy iormio ur. Impor xpio ohi r h SFS progrm h Cr or AmiExll i Iormio Aur Euio progrmru by NSA DHS o promo iormio ur- uio rl oz uirii, ro houry.

Rhr h oopr, hor, i my giomp ih h ohr or ybruriy hir. E

ihi o gy ubompo my il om-pig gi ohr gy ubompo. A rCybr Corp job ir, or xmpl, DHS buru ubompo r rruiig ix ir boohor SFS gr-o-b.

Pri Obm, i My , r h po o y-bruriy oorior i h Whi Hou, prom-i , omprhi rgy o ur Amriiormio ommuiio ork.

A pr o hi or, h miirio publily r-

l oum i irgy poliy ommi h Whi Hou oorior houl oir hoo br r ybruriy xpri o irrio o mploy ih uh xpri ihi hrl ri.

T poliy oum, hor, or o il.

Criil ompo o h U.S. ybruriy rgy y orkor plig ilu h 6 illiggi h opr ur h umbrll o h Dir-or o Niol Illig ih pil rpoibilii h Dprm o Homl Suriy. T DDprm, hih i oirig i o ybr-uriy miliry omm, i lo mjor priip.

T orgiziol mmbr o h iol illig ommuiy opr-ig ur h Diror o Niol Illig h Urrry o D-

or Illig ilu illig ompo o h Air For, Army,

Ny Mri Corp; h Crl Illig Agy, Frl Buru oIigio, Co Gur, Drug Eorm Amiirio, D I-

llig Agy, Niol Roi O, Niol Gopil-Il-

lig Agy Niol Suriy Agy; illg ompo

o h Dprm o Ergy, Homl Suriy, S h rury.

rAGMenTed GOvernAnCe And unCOOrdInATed

leAderSHIP HInderS THe AbIlITy TO MeeT

CyberSeCurITy WOrKOrCe needS

Rpoibiliy or h uriy o h gormompur ym riil iol irruur ihr ro umrou rl gi, ih h lio uhoriy rquly blurr iio-mkig

plir.

Ti hol ru o ju or iio bou rgy, poliy,hology hil r, bu or h gor-m ll-impor ybruriy orkor h murry ou h polii prorm h highly kill y-o-y k o proig h ompur ork.Currly, hr i o rgi gorm-i -m o h urr o h ybruriy orkor,i iz, rgh k. Tr i o rlpl projig ho my ybruriy pili ill

b x yr or i h x yr o m i-iiul gy gorm-i , h kill riio hy houl po, ho hy houlb ri, or ho hy houl b rrui io rlri.

Tr lo i o m o h ur op oh rol o big ply by pri oror,

hhr h bl o rpoibilii i ppropri orhoul b hg.

I hor, hr i o o i gorm i hrg o o-

oriig ybruriy orkor plig or iio-mkig, lig gi o hir o o rl or o om up ih hir o r r-quirm.

Tr i lo uriy bou h ol iz o h y-bruriy orkor. T Pgo h publily h i h mor h , prolmiliry, iil-i orororkig ih ri g-i m o b iol ih ybruriy. To-DOD iili ybruriy orkor h b -im by riy o oil o rg rom , o,, hil h illig ommuiy umbr rli.

Agl Bily, h oi iror o h Cr orl Cpiy Poliy h O o ProlMgm, i hr i o x ou o hoi mploy i ybruriy oupio bu o hryig job iio lk o oiy i hil ro h gorm. I ll you h umbro iormio hology pili ho piliz i


14/36


8

Ery gy o gorm, rom h Irl RuSri o h Dprm o Vr Air hSoil Suriy Amiirio, o pro i i-rl ym, o hr rom irur h rol o ply i rl ybruriy rgy. TFrl Ergy Rgulory Commiio (FERC), hFrl Rr Bor h Frl Aiio Ami-

irio, or xmpl, h ybruriy rpoibiliior h iuri hy rgul. R ilour boupoil k o h io por gri proi hillig xmpl o h gy lik FERC .

Tr r my ohr plyr i hi r ho rolmu b i y i lopig rgi pl polii. T Niol Iiu o Sr h-ology hil piio or ompur ork uriy. T O o Mgm Bugr gy ompli ih h Frl IormioSuriy Mgm A (FISMA), OPM hir-

ig job liio rul.

T Gorm Aoubiliy O gy i-por grl h rpoibilii or ig moiorig gy prorm. Agy CIO CI-SO h riil opriol rpoibilii h iluplig, quirig mgig hology, or-ig orkor .

Gorm gi iiiully my omplxm. T Obm miirio, pr o ibro-b ri ou rlir hi yr, ii-

mor h poliy iri, xui orr rgi rl o rl iormio uriy.

I ill b hllg or h Obm miirio ooori ybruriy polii; hor, by oig oi brig ou irio o olig rl ybr-uriy orkor problm.

W o o h hology problm. W h lr-hip problm. Lr h o i ho hy or h uriy iu hum pil fo romh, i Norm Lorz, h r gorm-irl hi hology or (CO) OMB urigh Buh miirio.

PrOCeSSeS And ruleS HAMPer reCruITInG And

reTenTIOn eOrTS

Gorm iormio hology mgr, likhir ourpr i ohr pr o h rl ym,mu l ih umbrom o ifxibl rul pro.

t h P i b

F hig i gorm r mor ily riiizh h pro or hirig mploy, h pro- or hirig ybruriy l r i o ouiqu hllg.

A Spmbr rpor by h DHS ipor grli h prm o o h CIO h h gr i-uly hirig riig quli o ll i uho-riz poiio bu o h lghy burom

hirig pro.

Illig gi, uh h NSA, h mor fx-ibiliy i hirig ig ompio h h iil-i gi. My o-illig gi h lxpri uully rig lopig ybr-uriy pili bu hy h mllr ybru-riy orkor.

I iri ih CIO CISO, ll iu-ry lr, my rmrk h i i iul or HRo ur h hir kill xpri rbu h HR proiol o o ully urh hil p o ybruriy job. Spiyigrquirm i job oum b iulbu HR o i o gi h hirigmgr ough highly quli ppli o iri.O h ohr h, h hirig mgr my b lookigor ry rro o kill or xpri o ll pri o i hi or hr hop.

Sury rpo r lo roubl by ho log ik o ll i. Our ury ou h pr

o h CIO, CISO I hirig mgr r i-i or ry ii ih h im i k o loh l hir omo. Pri or mployr ro bl o or job o-h-po or urig o mpuiri o quli i. I omprio, rl mploy ll u h rl ppliio proi plgu ih lghy ly. Frquly, job ppli

Progress Made in Strengthening DHS Inormation echnology Management,But Challenges Remain (OIG--), Dprm o Homl Suriy, O- o h Ipor Grl, Spmbr


15/36


9

h HR o r o kolgbl bou hu o hir ppliio. A o h pri pygp ih h pri or, ompli hirig pro lghy ly u h b i o golhr.

Fiy-our pr o ll ury rpo i hyr ii or ry ii ih ly uby h uriy lr pro. N rl mploy

rior hi h hy mio h h lghyuriy lr pro ihr u om io k poiio rquirig lor-ll lr ormp hm o ork or oror ho u hmi o-ur uio or proi riig uil hyri hir uriy lr.

g l c d c J

Diggig pr, o o h bigg problm ih hpro or hirig ybruriy l i gorm

job liio ym.

T Iormio hology (I) Mgm Sri,ko i gorm prl Grl Sri (GS), i h primry liio or rl iorm-io hology mploy. Wihi I, brk io ub-liio or prhil il.

Alhough ybruriy iu u ro my I u-io iol ry piliz kill riig, hGS- uriy ub-liio (INFOSEC)

hi ork oly i bro grlii. T ilu -urig oiliy, igriy, ilbiliy o y-m, ork, hrough plig, lyi,implmio, mi, hm oiormio ym, uriy progrm, polii, pro-ur ool.

A ompliig or i h ybruriy b pr orl ir uio job mili or li-io, o ju i h I ri. For xmpl, proio-

l li GS- Compur Egir, GS-Elroi Egir GS- Compur Siimy prorm ybruriy-rl k or my rquirpi ybr-rl riig kolg. O rl-ily youg rl mploy ho h b oig ybr-uriy ork i gorm or yr ol u hh h ork i our ir job il job ri,

hough h h ly b prormig ybru-riy uio. Oly o job li .

Si h iii rpoibilii o gormybruriy poiio r ill-, I mgr hum rour proiol y i i hr o rib opoil ppli i h ybruriy

job il, hror iul o h righ l.I iio, job kr o rily iiy ilbljob or i i hyr quli or ir, buhy my o ko ho o rl gorm pko gur ou h gory or job il o oir.

Li mgr rpor i i ry iul o urlyrib h kill hy . My job ppliio r-quir i o r quio bou hir rlkill xpri. T quio r impor, b-u i r r r o rmi ho i

W o rliz h i oh ork h gi hkp ompii lo. Ih pro.HR oil mjor gorm prm

GS 2210InOrMATIOn MAnAGeMenT TeCHnOlOGy SerIeS

t 11 2210 j :

P P

nw s ep a

d m

s

i

s a

s a

app sw

c spp

op s

T r hig h o b o i o h

job kill ompi o prorm h job.Agy progrm mgr


16/36


10

quli. Hor, hirig mgr i o h hquio houl b o o ly lly ihi h

oil job ripio i h oupiol ri. Fur-hr, om ol jobuh ru io, orkmgm girigo ilu ybru-riy uio h r o rf i h poiio -ripio.

My xpr pok o bli h gorm l-iio mu b up by rig ybruriypily h or o rquir kill r-pl h urr bro iio.

A progrm mgr lrg gorm prmi OPM o b mor proi up jobripio ro h bor or I uriy o moy rlii. T urr job il r migl.T kill h riio r omprbl rogi, o o HR proiol ho rrui y-

bruriy l.

Som o h job gori oui h ri rlo ou riio. For xmpl, h poi-io liio or Compur Si Sri GS-i Jury , ll bor h Ir i-ly u.

Aorig o OPM oil, h impu or hi kio hg mu om rom h gorm iormiohology ommuiy. Ti oil i h rioupri i h gorm iormio hology -

or h o rh grm mog hml omy o h iu, mkig i hr or OPM o k ymigul p.

n c P c W

Expr lo ll or h rio o rr ph or y-bruriy pili h ill hlp job i mploy ur ho o gi ir xpri,rpoibiliy py ir, hrby promoig r-io. A rr ph lo ill hlp gigro h xpri hy by ribig h kol-g ompi rquir or rr progrio.

A prigiou ommiio o by h Cr orSrgi Iriol Sui l yr i h im-por o lopig uh rr ph, ig hi oul llo iiiul o mo o mor ior poi-io xpri i gi, ihou moig o irrr l, o b omp orig o ir

kill, o xp h priulr l ill proi oroiu riig m.

Ti rpor o h hr r ry pi ybr-uriy kill o rib i urr job liioh houl rquir miimum ry rquirm piliz riig. Exmpl ilu ulrbiliylyi, iruio io, igil ori, rr -girig, proool lyi, prio ig, ur

ork girig, ompur ork k.

Grg Wilhu, iror o iormio uriy iuor h GAO, ol Hou Origh GormRorm ubommi i My h mmbr o hybruriy gorm orkor houl b i proiol, gig ri i pi kill bomig li. H i h proio mu k -io o i o, bu h i oul b hlpul iCogr ply rol.

I mor h ju pig xm, bu ully li

bo, h i. W o hi ih rl lpopl. W o i ih popl ho groom og. W o i

ih lyr oul ohr proio.

Tr h b rl ybruriy orkor iii-i i gorm kig o ri job liio ompi, bu hy ppr o b oprig ouilrl rk.

T Frl CIO Couil I Workor Subommii ouig omprhi ppril o h I ork-

or or h rl ommuiy o lop ybr-uriy kill mrix. T illig ommuiy i p-rly orkig o i o proj o ybruriyompi.

T D Dprm, by r h lrg iormiohology mployr i h gorm, h uully h ompi i ybruriy mploy

Securing Cyberspace or the 44th Presidency, T Cr or Srgi Iriol Sui, Dmbr , .

W o b bl o kphm hppy by lloig hmo gro i h l yi.HR proiol i h illig ommuiy


17/36


11

. I 6, h Pgo r Iormio A-ur riig, Criio Workor Mg-m Pl h blih riio r roh ir DOD iormio uriy rpri bo ommril piio. DOD rquir ll iili,miliry or mploy o obi h riig riio hy o m or x ork r-

quirm.

Abou pr o h DOD iormio ur orkor h b ri, h gol i ull -prm ompli by . Gorg Bibr, iroro h DOD progrm, i h iiii ill r rmork o impro orkor mgm lloDOD o bli h ill hlp pl popl ih hrigh kill i h righ job h righ im.

I Oobr , DHS iu rour gui ko h Iormio hology Suriy Eil Boy

o Kolg (EBK) or gorm orkor pl-ig. Noig h h rpi i h igil -irom h b olir omim h-oi, lig o iprii i h ompoiio o hiormio hology orkor, hi umbrlloum k o r iol bli o -il kolg kill or I uriy proiol.

P l m i h

g cp tp t

Our ury ou lry rg or iormio uriyprol po hllg or om gi h iom o rruiig hirig op l.

Oly pr o CIO CISO i hy r -i or ry i ih h ompio pkghy oul or propi mploy. O CIO olu h py i o ompii or h op l h ,

h hum rour hik h py i gr-ou, i i o ough.

Fiy-o pr o CIO, CISO hirig mgr pr o HR proiol i hy r i-i or ry ii ih hir biliy o omp

ih h pri or or quli i. Somgi k ull g o hirig ii lryilbl, uh rloio bou, u lo rpy-m ommim uiio rimburm or u-ur our, bu ohr o o. A HR proiol mll gy h rrui highly-hil iormiouriy l i pri iury h lg up. Tr

r om iuri you ju omp ih or l-ri, h i.Illig gi ho o i o h GS lh py fxibiliy h mk hm mor ompi-i ih h pri or, bu o ll gi h hifxibiliy. Ti ir rul i illig gi

hig py g or hir o-illig ou-rpr or hir.

Slry limiio lo hur rio. Alhough ro ilbl o pilly hy mploy l ybr-uriy poiio, HR proiol, CIO CISOol ori o lu mploy big lur y by hpri or ohr gi ih py fxibilii orrporly mulipl o h hy r rig. I hury, CIO CISO l h lo lry lko m opporuii r mjor u o -riio.

T lry iu u ro h bor, rom hir oxpri proiol.

UirumUSA ou ul ury o mor h, U.S. urgru, kig hm h hr-rii hy k i hir r mployr. UirumSury o Il Employr () ou urgru- ih I bkgrou ir i ybruriyor iormio uriy xp o r l $,or hir r job r gruio.

I or, ry-ll hir rig GS- poiio(i hy quliy ih l . GPA rom our-yrollg) ill r rou $, or $, (GS-) oromo ih mr gr. Prior rl xpri- or ohr or proi h bi or highrrig lry.

Rly hir mploy gy hirig mgrrpor h h pri or ybruriy py rr highr.

Di or rl mployr, hor, r hb pkg orkpl fxibilii gormor. Amog ury rpo, 6 pr r i-hr i or ry i ih boh b fxibilii. T Uirum ury ou h uhighly lu ork/li bl i gorm/publi ri rog i hi r.

Sy gi r ompio pkg h kull g o o-il b. My ppli ll xpri ll r gr o mk ir or


18/36


12

gi bk hrough gorm ork, r illig ooir ol ompio (h ull pkg o lry,b ii). I h , h h rii-l impor o ybruriy ork i mphiz ohr b r xpli, gorm i mor om-pii. A rl mploy ol u h khm hy hy oiu o ork i ybruriy or h

rl gorm, pi h lur o h orororl, hy y bu, I u!

THere IS A dISCOnneCT beT Ween HIrInG MAnAGerS

And GOvernMenTS Hr SPeCIAlISTS

I iio o ig limi ooriio o ybr-uriy mr ro ir gi, our rrhou h gorm HR proiol h CIO/CISO ommuiy o o ly m o b o h mpg.

d w a

Wihi gi, our ury iri ii io b hirig mgr hum r-our, ih boh group uggig h hr r prob-lm ih ollborio.

CIO, CISO I hirig mgr, or xmpl,hik h problm r mor r h HR pro-iol o h i om o ppli quliy hir-ig imli. Whil pr o CIO, CISO

hirig mgr r uhppy ih i quliy,oly pr o h HR mgr r ii.

A 6 pr o h HR mgr (ompr o oly pr o CIO, CISO hirig mgr) ihy r i or ry i ih h quliy o

job i.

Tr i lo i h I mgr hir gyHR ollgu o o ly ork ooprily. Tiry-igh pr o h CIO, CISO hirig mgr

r ii or ry ii ih h ll o ol-lborio ih h HR prm, hil pr oh HR mgr i hy, oo, r uhppy ih hll o ollborio.

A hology pili o gorm gy ih hir hr popl l yr uig h ri orI pili, bu i ruggl riig pri jobripio h gig h l h . HRy pik ri. You r ori i ho you rih quio or ig h ppli rl kill.I h , hi oil i h i o l h gigh b poibl i rom h pro.

A rur CIO mjor gorm prmi hi HR popl o ko h ir bgoo b i. Ty o g i. W o

h ough goo popl. Ty ju o g i ulhy r mh i our orl.

Bu hr r o i o hi ory. A gy HR o-il i hirig mgr CIO o ly ur- h i mu b ir op ppliio pro.HR proiol r o or o b h gurio mulipl rul, rgulio prour, hih rpri by my brrir o imly hirig iio.

table 2

disconnect betWeen cio/ciso community and hr Proessionals

cIO/cIsOs/HIrINg MANAgers comPared toHR ManageRs d v d n d' k w s v s

Q 33% 10% 26% 29% 40% 61%

n q w pp 41% 34% 29% 21% 30% 45%

t p 54% 46% 33% 29% 13% 25%

t 77% 52% 3% 10% 20% 38%

l w hr 38% 31% 26% 14% 36% 55%

Sour: Mrh ury o CIO, CISO, hirig mgr HR mgr. Prrhip or Publi Sri Booz All Hmilo.

T hum pilmgm pro ibrok. Oprio HRpopl houl b joi

h hip ollbor rogorm.Norm Lorz, h ormr gorm-i CO OMB


19/36


13

HR houl b y ih rig ui quli-io, bu mgr o omhig o pih o o quli, i h HR oil. Mgr o b ho bou h hy r lookig or h u ho or o mphiz h hy .

A omim h pro ork. A CISO mjor

prm i h my b xpio, bu h h oh problm ih HR. Wh I h y, I mih HR, go hrough o r quio o h o I hm r o h job -oum. Ty ri i bk. Tr i ry quik urrou.

Whil hi o ho h h ym ork,orll ou riou io b HRproiol li oil i my gi. CIO,CISO hirig mgr r rur h h hir-ig pro i ifxibl, orou, im-oumig

loi h i o o yil h quliy quiy o ppli hy . HR proiol lhy r rig hir li mig hir , bulo mu rully hr o blih rul pro-ur o ur ir impril pro.

a w oPm

CIO, CISO HR proiol r priulrlyii ih h orkig rliohip hy h ihh O o Prol Mgm. T quio i

our ury , Wh i om o iiyig r-ruiig quli i or your ybr/iormiouriy poiio, ho i r you ih h ll oollborio b your orgizio OPM? Oh rpo, pr o h CIO/CISO pr o HR mgr rpor big ihr ii- or ry ii h ll o ollborio ihOPM.

Muh o h iiio ih OPM m o mrom iuli obiig or uig ir hir uhor-iy (DHA) or ybruriy poiio. I , OPMproi gorm-i ir hir uhoriy or I-ormio hology Mgm (Iormio Su-riy), GS-, GS- highr job. DHA b -lr or job hr hr i oum o b riilhirig or r horg o i. Uig hiuhoriy, gy hir ihou rgr o ompi-i rig rkig, r prr, ohrprour.

Wh HR proiol ho rpo o our uryr k hih hirig uhorii ork ll, mymio DHA, bu i impli h ompiipro. Bu om r ii ih h op o hir hir guili rgu h uhoriy i oo lim-i.

Frl ybruriy lr r yig h mjor go-rm prm ir uhorii o rrui hir piliz ybruriy l. OPM h bk by l o CHCO o proi iiol li-u i grig ir hir uhoriy or iormio -uriy job i h oupio ri rig hGS- ll, lo o mor gori oui h ri h r ybruriy-rl. T iluliio i ompur i, lroi gir-ig, ompur ork ori, ompur ork k.

Ti CHCO i h OPM urr ybruriy-rl- polii liio r iqu or oy-hgig ophii ybruriy orl.

T poiio o b ll ur xiig om-pii xp ppoiig uhorii, h i.

T uhorii rquir up-o- OPM liio quliio r. Hor, urrly ri-, ho r o o r h ompi rquir.

Agi o o OPM hlpig hm ol prob-lm hirig ybruriy l, om rr o OPM

pr o h problm rhr h h oluio. No-hl, OPM mu bl i rpoibilii o proh mri hirig pro ur ompli ih hir-ig rgulio (uh op ompiio rprr) ih h o hlp gi h lhy . Ti i o iul bl.

W rogiz hr r oirbl hllg, iOPM Agl Bily bou h rurio gih ih rruiig ybruriy l. I i m mor iul h h rm ybruriy mir hig o ir lr/gi. A p ih righ irio i o pull ll o h ir prioghr i o room ybruriy.


20/36


14

My o gorm ybruriy orkor hl-lg r ymi oly b r ih h

uppor o h Whi Hou Cogr. Bu hr r umbr o hig gi ih ybruriy-rluio o o hir o righ o.

T r p gi houl k i o ou o mighir ybruriy l by puig omo ihrg. Agi houl o i or irio rom h

Whi Hou ybruriy oorior o k hip. Ti iiiul houl b gi qu uhoriy rour o m hirig gol houl b hloubl or hiig rul.

Ti iiiul houl b hrg ih lig -or o hir, ri ri iil r ih hi-l xpri. I iio, gi mu i qurour prol o mg ybruriy l,iluig oror. T ilu hig popl o ih pro omp i moiorig or orig h oror orkor.

Our rrh ii umbr o uul rgiiiiul gi pri orgizio r uigo m hir ybruriy l , hih houl

b hr op.

B o h b pri, h lop Check-list or Cybersecurity alent Management( Appix).

W h lo ouli mol or quirig m-gig l. T ol l Mgm Mol i-

lu our ph:

. Socig a citmt ou o loig lo ipir h b poil i o oir

orkig i rl ri ourg popl opuru h lrig h l o rl ybr-uriy rr.

. Jo aocmts ll poil ppli hkill r h h job il; makt-ig g h iormio o poil ppli i prui ompllig y.

. A pa o sctig th ight tat a cosig th ar i uully ompl h ppli-io ilu urig h li mgr hhum rour o r orkig oghr hlpig i g hrough h ough uriylr rquirm or ybruriy poiio.

. Ooaig a ttio r il o miimizh im i k mploy o rh ull pror-m ll mximiz h lgh o im high-prormig ybruriy l y gy.

r E c o m m E n d a t i o n S F o r a g E n c i E S

W h at c a n b e d o n e r i g h t n o W

total talent managemen t model

s r

m J J a

s t c d

o r


21/36


15

SOurCInG And reCruITMenT

A rib rlir, my gi u h SFS progrm hir primry ry-ll rruim ool, i lrgpr bu h SFS u r ll-ri yo , hk o Wb o h u rum.Ohr gi buil log-rm rliohip ih r-g uirii, gig o ko ky uly mmbr

uig h mpu ommuiy bou job oppor-uii. Som r o urriulum iory bor,hlpig ifu h urriulum o gru h hkill h gy .

Aohr impor our o ry-ll l gr y o h o poil uur ull-immployi hrough orml irhip progrm,

hih bom pipli or prm poiio.Si h SFS progrm rquir rl ummr ir-hip, i i poibl o oil h SFS rquirm ihrl irhip progrm: h Su mporry

Employm Progrm (SEP) Su Crr Ex-pri Progrm (SCEP). T Dprm o Juiu SEP o iiy poil i bgi huriy lr pro or SFS u rly o hy r orkig prm mploy righ rgruio.

Agi u h u progrm o brig o o-SFSu ll, uh u rom Cr or A-

Leaving alent on the able: Te Need to Capitalize on High PerormingStudent Interns, Prrhip or Publi Sri, April

Agi or SEP o SCEP poiio u h hour o-

r o-ompii ligibiliy

mi Exll iiuio. Ohr u h fxibiliiihr i SCEP, hih llo hm o o-ompi-ily hir u r hy gru (by uullyomplig prrib umbr o hour), o brig-ig hm bk or oui ummr, builig loyly kill h irly oribu o h gy lr.

Ir hig bk o mpu uoubly hr hiriio or iiio ih hir irhip xp-ri. T Prrhip or Publi Sri Frl Sr-i Su Ambor progrm h b uul hlpig gi prpr ir o go bk o hirmpu hr xpri bror iorm-io bou rl job irhip ih hir pr.

Som gi l or hirig ry-ll l bu gru r ir o rrui h mi- ior-ll l. My xpri popl myo b ily lookig or job. Agi o

ggrily k ou h o-ll pi i.H, proi ourig iol lyzig hr hrigh our o l r ho o o hm.

For mor xpri l, gi h imply pojob oum o USAJOBS.go my o b u-ul. Mor proi mho ilu publiizig joboum i h orig ommuiy, ri-ig o hology Wb i, ourgig mploy omk rrrl pprohig pri-or buiig lyo o o ih mploy ho h kykill. rr rom ohr gorm gi r lo

big our o hir. Orll, i gi o o hpi ourig rruiig rgi or hirig boh ry-ll, hi b hi or mi propoiio.

W romm h gi op h olloig bpri or ourig rruim:

dci what skis, comptcis a o xpic

to tagt;

dop a thoght, cati citig pa;

Iti a citig champio to tak iitiati a ma-

sha socs i caig ot th pa;

rach otsi oia chas to coct with passi

caiats who might itst i th ot

acti ookig o a w positio, o who kow oth

caiats;

us W sits a appoachs i aitio to uSAJObS.

go, sch as socia twokig sits (acook, likI)

a tchoog sits (ic.com, Goloop.com);

bi po w-staish atioships with pottia

socs o caiats (.g., cotactos, atioa associa-

table 3

universities With the most ss graduatesrom 2006-2009 (as o 1/30/09)

Iniion toa

u t 53

c m u 51

n P s 27

n c a&t 25

s u 25

nw mx t 22

mpp s 21

P u b, ny 21

u n 21u n c 20

o u 167

t 453

Sour: Niol Si Fouio, SFS progrm


22/36


16

tios, isitis with cti iomatio assac

pogams) o staish w atioships with a commit-

mt to sstai thm; a

Cat stog, coaoati atioships tw Hr

a i/hiig maags.

MArKeTInG JObS And JOb AnnOunCeMenTS

Ho gy oy i lr omplligy o poil ppli h h job i lik hkill r ? A, ho o gy r pro- h ourg quli i o pply? I joboum ou bururi, ppli mighquikly i o o pply. T job ppliio i likh bi h rl i h pr h, bu i lo ho hlp h hirig mgr rmi hih pplih h ry kill. Appli lo gyo ommui ih hm hroughou h pro ohy ko hr hy .

Rrly o li mgr HR proiol orkoghr o iiy h b rgy or gig ior-mio bou h job opig o poil i.Troughou our iri, ou ii ur-o o iomor bou ho HR li mgrollbor or o ollbor o lop job ou-m.

W romm h gi op h olloig bpri or mrkig job rig job ou-m:

Ho a mtigs tw i maags a Hr to

ag o th ski a comptc s o th posi-

tios to ;

Cat a goo coaoatio tw Hr a th i

maags to op a jo aocmt that ca

scis what th jo is a assssmt stios that

spcica iti what skis a xpic th hiig

maags a skig;

Ag o how to gt th wo ot aot th jo to po-

ttia appicats, a th ii p a joit xct

thos tasks;

Tst th at jo appicatio askig a ati w

cscit hi i th agc to piot tst th appica-

tio a poit ot a osc, cosig agag o

gomt-s;

estaish a tim shot at th jo is post to iw

th appicatios to s i ait caiats a appig;

i ot, chag th statg o th aocmt;

Iti a iiia to o ca to asw stios

aot th appicatio pocss. This go-to pso sho

wak caiats thogh th pocss, icig coct-

ig thm with i maags who ca asw stios

aot th jo.

SOurCInG And reCruITMenTTHE FEDERAL ENERGY REGULATORY COMMISSION

r c a v pp p , e rc erc. erc' p p w p p . b p pp, erc p pp q pp p c .

, erc w w w p,

p p pp c .

o j p , xpv. b q , erc w p p p pw .o p q p pw p . t p . erc pp , p p.

MArKeTInG JObS And JOb AnnOunCeMenTSDEPARTMENT OF JUSTICE

a cio dp J doJ, p w , pp , p p p p pp. J W, p , xp p w cio w p. t 28 p w w p p p p.W 28 p p, j .

t p, d i ts s / dp cio, k d, cio

d h cp m a,d h, w j p. tw p hr . P w p w , w w , Wxp. t p , p doJ p w p w w.


23/36


17

SeleCTInG TAlenT And ClOSInG THe deAl

Ho o gy l h righ l rom h poolo i h g h i o y y?

Commuiio imli r big iu. Rlyhir mploy ol u h ppli o o ur- hy i k gorm o log o mk hirig -

iio, hy hy r o kp iorm bou h uo hir ppliio or hy hy h uh hr imig omo o r quio. B xpri rior royp bou lo bururigorm, u goo popl o go lhr hy p ohr job or ju rop ou.

OPM E-o-E Hirig Iiii ly ou -y mol or h ompl hirig pro. Uig himol, gi uully pl o p up h -iio pro, gig pprol i or rrui-m bou, uig ir hir uhorii, rrgig

iri i i y xpiig hirig bypuig rquir pprork oli. Similr o hlpigi ompl job ppliio, HR mu lrly oiully ommui ih i hrough-ou h hirig pro.

O h job or h b m, h ompiopkg b brrir. Ery-ll i myh lry xpio h r ou o rh. For mi- orior-ll mploy, lry gp my b grr.Smr gi r prpr o pr ompiopkg o h b i h proi rib /or il ii o o y lrygp. T pkg ilu rruim rloiobou, u lo rpym proiol -lopm opporuii. riig opporuii bpilly ri.

W romm gi op h olloig b pr-i or lig h righ l loig h l:

estaish a cit, tim sctio pocss that mts

OPMs 80-a hiig giis xamiig a -

casig th m o stps i th hiig pocss;

dis a itiw pocss that cti scs a

attacts caiats. Sch a pocss sho aow th ca-

iat to mt th k pop who wi mak th hiig

cisio, as w as oth ati w mpos who

O o Prol Mgm, hp://.opm.go/publiio/

EoE-HirigIiii.p

Ti my b uru il ii oly ou o mor h6, rl mploy ho ri u lo rpym i r

I mploy. Sour: OPM Federal Student Loan Repayment Program FiscalYear 2007 hp://.opm.go/o/py/ulo/hml/FYSu-LoRpymRpor.p

ca hp motiat th caiat to sa s to th jo

o;

Iti a a pso o ach itiw who wi hp

th caiat thogh th sctio pocss, icig

aswig stios aot oth th ogaizatio a

th wok. espcia o mi- a sio- cai-

ats, th a pso sho wok with th itiw

to iti what th caiat most as (acia ooth ictis) a commicat to Hr what th ca-

iats pioitis a itsts a, to hp cos th a;

rach agmt i aac o th packag o hiig

ictis; a

Coct ata o th sts a sccss o citig a

hiig, tackig sch mtics as th m o its

cot to pmat positios, th m o appi-

cats ci om tagt schoos o om oth tagt

socs, accptac ats om st choic caiats

o ach positio, a th m o positios com-

pa to th m o acat positios.

ClOSInG THe deAlTHE GOVERNMENT ACCOUNTABILITY OFFICE

gao hr w w . i sp s j , gao p pw w . a p p gao p p p, wp p w w . i , w w p p p w .

gao p w p it , p w , wpfx p. b gao gs p , w p xp. t p w w p w gao p p.

o p w gao xp p, , p p

. gao p pp w , w . gao pp w w .


24/36


18

OnbOArdInG And reTenTIOn

Goo oborig miimiz h im i k or mploy o rh ull prorm ll mximiz- h im high-prormig mploy y ih hgy.6 N mploy o b lom io hgy m o l pr o h m righ y, buhy lo mu ri riig o u. I m-

ploy r bor h l uriy lr i ri,i i mor impor h urig h iig priohi or hr ork b migul. Rrh ho h mploy i i h r ix moh hhr hor h h m mik i lig hi or hr job hhr o y.

oo o, gi hik o oborig imply ori-io urig h r y o h job. Hor,mr gi buil rio io hir rgi ork-or plig ur h goo oborighlp ri high rio. T gi ilor hir

gri oborig progrm o ybruriy hir.T mo i oborig progrm oiu o pro-i uppor o hir or up o yr r hy r.

Aohr impor ii o ri ybruriy pro-iol i riig, pilly pr o rr ph.N hir ol u h i impor o hm o y h op o h gm i h -moig ybruriyl. O h ohr h, mploy rpor h ll ooo hy riig poy or o ir killhy o ho, y hy h o gh o g hoky or h im h uig rom uprior o impor or riig io.

W romm h gi op h olloig bpri or oborig uul rio:

dop ooaig pogams o a w mpos,

t aso ha spcia pogams o w cscit m-

pos to accimat thm, itoc thm to coags

a immiat amiiaiz thm with th agcs c-

scit wok;

Impmt taiig a opmt pogams, ic-

ig otatios to it pats o th agc that o

cscit wok, to gow skis a kowg, a

ic a ca path with oppotitis to a appo-

piat cticatios;

Mak w mpos coct to th missio

sig thm i citig a otach pogams at i-

sitis a high schoos;

6 Getting On Board: A Model or Integrating and Engaging New Employees,Prrhip or Publi Sri Booz All Hmilo, My

Iti acia a oacia ictis to hp -

tai mpos, icig stt oa pamt a

titio imsmt o cotiig catio; a

ecoag twokig acoss th agcs cscit

wokoc (icig ocatios) to i oat a

hp cat a amwok wh a cscit soc-

s ca moiiz i .


25/36


19

Arig, hirig, riig, riig ilymgig ybruriy l i irigly highprioriy or h rl gorm ll h pri-or. I iio o our rommio or gii h priou io, ll or mor ymi rorm mulipl ll. T Whi Hou ybruriyoorior ill urlly b h poi pro or hio, brigig ir b gy CIO CISO, h CIO Couil, CHCO, lr i h il-lig ommuiy, rl gi (pilly h O- o Prol Mgm) , i om i,ogriol lr.

THe WHITe HOuSe CyberSeCurITy COOrdInATOr

SHOuld:

dop a gomt-wi statgic pit

q,

. t W h w w oPm

p p p. t p

w p

ppp p p

. i

p w

w.

eist th sppot o th piat scto a acamic

commitis w a

p , w w

p . t it xp a

,

p , w p

w. t W h w

c s p, p,

w p ,

, p

xp a.

dis w, p-to-at jo cassicatios o csc-

it ctios i gomt a staish cticatio

imts j p

. t w

q p j w oPm

pp ,

.

OPM SHOuld:

Cat a icat, high-, high-pioit tam ww

, . t

wp, oPm p w

p pw

,

w. t p p

p.

ix th a hiig pocss. x

p w p

, , p . oPm

ee h i p p

p ,

w p

pp p. a

px p

, pp

s. 736, h P ip a

2009 , . t p

, p

x pp

.

rso og-staig poms ao cassicatio,positio sciptios a oth tchica Hr matts

that ct mak postig a ig a cs-

cit positios compx a/o ict. t

p p

, p, p

pp p w

p . sp, oPm

2210 .

estaish a caighos a oms that wi icas

coaoatio

, .

oPm pp W h

p p

.

Gi agcis gat fxiiit

, xp p

p , p p p

.

Wok with th itigc commit a o-iti-

gc agcis to a gomt-wi ca path

r E c o m m E n d a t i o n S F o r t H E a d m i n i S t r a t i o n

a n d c o n g r E S S


26/36


20

p,

. t p .

t p p

w

w ; w ppp,

w

p p.

Coti to sk was to xpit th scit caacpocss, w

w p .

Coct, aaz a s agc-spcic ata w

p .., x w

,

p p

, , .

expa th m o isitis oig c/io-

matio assac cica p ,

j p s

p s ns, dhs, oPm, nsa dhs, w c a ex p.

COnGreSS SHOuld:

Poi sigicat ig to op a kp a

cscit tat kowga at a stat o th at

o aiss thogh taiig a opmt. r

q p p , w

p p p

p p,

p.

es aat ig o sccss pogams that

poi gaat a gaat schoaships i th

cscit . ex p

q pp

. i p, c

r s a,17 w w p p

x

p

w sp s p dod i

a sp p. rq

p p

pp w p p,

q p,

p

q.

Te Roosevelt Scholars Act irou i h h Cogr by Rpr-i Di Pri (D-NC) Chriophr Shy (R-C). T RooseveltScholars Act o 2009ill b irou horly i h Hou by RpriPri. Sor Gorg Voioih (R-OH) ill b h l poor i h S-

. For mor iormio, pl ii ourpublicservice.org/roosevelt.

Poi osight q

oPm p p

w p ,

p ,

. P

, .., xp

/ pp,

, p. i

, p p

p oPm p

, p

, ,

, w w

pp. i

,

p p x p .


27/36

T rl gorm mulop rr l orybrp proiol, romiiil ry ll h y o

SES. Tr r ybrholrhip opporuiiilbl or ollg u, o ry poor jobo mgig hir rr. I o o immilyr hi problm,

ill r b bl o urh rl gormork.Mru H. Sh, Diror, SANS Ir Sorm Cr

Bor h Hou Commi o Origh GormRorm, My ,


28/36


29/36

23


rw: d:

MAkINg cybersecurIty A tOP PrIOrIty No y sad comp

i p w p?

i , w p p w p p ? d / p cio ?

d / pp p w p? d / p w p?

d p w , , p? W ppp p p ?i p pw w w p, ?

d w p ? d p pp w?

h p p ? d p p w w p ?

sOurcINg AND recruItMeNt No y sad comp

d p ?

d hr w w p j ?d p p j p? a p?

a pp p xp w w j ? d xp p ?

d xp p w w w ?

d hr p w w j pp pp w j pp p? W w p pp?

entry-level

d pp p p w p, c a ex? d sp s p? i , w ?

d p p p ? a p p p, p p

p?W w p , p w, pj, p , . w p pp j?

d w , p ?

d w W , li, w p?

mid- and senior-level

d p p j ?

a p p E n d i x a

s e l - a s s e s s m e n t c h e c k l i s t o r c y b e r s e c u r i t y ta l e n t m a n a g e m e n t


30/36

24


d p w p/ w , ?

d p p w p p ?

JOb ANNOuNceMeNts AND MArketINg JObs No y sad comp

d hr j , p ? d x p ?

a .. , p pp ?

d j p p, p p p p p pp?

i , , w hr w / j p pp p? i p w?

selectINg tAleNt AND clOsINg tHe DeAl No y sad comp

d w pp p j p ?

d hr p .., , , , w w p,

fx w , .?

d hr pp p q w? d hr pp p xp p .. , ciP?

i p w pp p w w q?

d p p w w ?d p pp w pp p?

d ? d w w pp xp ? d w w p w ?

ONbOArDINg AND reteNtION No y sad comp

hw w ? a p p w p p? a w p p?

i p p p?

d p ? d p p w p p w ? d w w p ?

d w w w w p w p?

d p p w p w?

d p?

d w p ?

d , w p w ? d p p p?


31/36


32/36

26


Congressional Budget OfceJim Joho

Chie Inormation OcerSphi Ruiz

Deputy Assistant Director or Management, Business andInormation Services

Corporation or National and Community ServiceRymo Limo

Chie Human Capital Ocer

Court Services and Oender Supervision AgencyBill Kirkl

Chie Inormation Ocer

Department o DeenseJoh Grim

Chie Inormation OcerKh Kig-Mrbury

Keystone Program ManagerK Ruh

Manager, Special Employment Programs

Department o EducationHrry Fly

Deputy Chie Inormation Ocer, Federal Student AidPhillip Lorgr

Acting Director, Inormation Assurance

Department o EnergyCrol Willim

Deputy Chie Inormation Security OcerJ Br

Director, Oce o Corporate Inormation and Services

Department o Homeland Securityom Cir

Chie Human Capital OcerJ Eimih

Deputy Chie Inormation Security Ocer

ii RoriguChie echnology Ocer, Chie Inormation Security Ocer,Security Inormation Ocer

mk BullokManagement and Program Analyst

Chriophr ChHeadquarters Recruitment Program Manager

Mur DlyDeputy Chie Learning Ocer

S FriInormation Security Systems Manager, Federal Law

Enorcement raining CenterEri Hy

Deputy Director, Workorce Planning, Stang Policy,Recruitment and Veterans Outreach

Joh H. Morrio, Jr.Senior Policy and Project Analyst

S NokDirector, Workorce Management Division

Br OllDirector o Cyber Education & Workorce

I PllCorporate Recruitment Program Manager

Pul Pli

Veterans Outreach Program Manager

Department o Housing and Urban DevelopmentJoy Lil

Acting Chie Inormation Ocer

Department o InteriorS HlLrry Ru

Acting Chie Inormation Security OcerJo ylr

Director, Division o Inormation Security & Privacy

Department o JusticeV Hih

Chie Inormation OcerKi Dly

Deputy Chie Inormation OcerDirector, Inormation echnology Security Staf

Crri GilbrOce o the Chie Inormation OcerDeputy Director, Inormation echnology Security Staf

Pr CrihloOce o the Chie Inormation OcerInormation echnology Security Staf, I Specialist

(INFOSEC)Do HillOce o the Chie Inormation OcerDirector, Human Capital Management & Analysis

Jo WlhOce o the Chie Inormation OcerPersonnel Analyst, Human Capital Management & Analysis

Department o ransportationShrri Elli

Inormation Assurance eam Lead

a p p E n d i x c

Pa r t i c i Pa n t s a n d s u r v e y r e s P o n d e n t s


33/36

27


Department o the reasuryMihl Duy

Deputy Assistant Secretary/Chie Inormation OcerLr Gro Associate Chie Inormation OcerRik Hig Deputy Chie Human Capital OcerEr Robk

Associate Chie Inormation Ocer or Cyber Security

Federal Aviation Administration (Department oransportation)

Mihl BroChie Inormation Security Ocer

Federal Bureau o Investigation (Department o Justice)Dol Pkhm

Executive Assistant Director, Human Resources Branch

Federal Energy Regulatory CommissionM Dl

Energy Industry Analyst (Cybersecurity)Jrry ylor

Senior EngineerAliz Vg

Recruitment Coordinator

Federal Maritime CommissionHi Chrbou

Director o Human Resources

Garcia Strategies, LLCGrg Gri

President, Garcia Strategies, LLCFormer Assistant Secretary or Cyber Security &Communications, Department o Homeland Security

Government Accountability OfceGrgory Wilhu

Director, Inormation Security IssuesNb Brkki

Chie echnologistBrbr Sur

Human Capital ConsultantChrl Vrbl

Assistant Director

General Services AdministrationKur Grbr

Chie Inormation Security Ocer

Internal Revenue Service (Department o the reasury)Robr Bugg

Human Capital OcerAlr Hollimo

Veterans and Special Emphasis Program Manager

Pml JuyManagement/Program Analyst (HR or Cybersecurity)

Grant Tornton LLPNorm Lorz

Director, Global Public Sector

Lockheed Martin

L HolombDirector o the Center or Cyber Security

National Archives and Records AdministrationSr Pul-Bl

Deputy Chie Inormation Security Ocer

Nuclear Regulatory CommissionPrik Hor

Chie Inormation SecurityPul Rik

Senior Inormation echnology Security Ocer

Ofce o the Director o National IntelligenceRol Sr

Intelligence Community Chie Human Capital OcerElizbh Kolmr

Intelligence Community Deputy Chie Human CapitalOcer

Ofce o Management and BudgetSuz Lighm

Lead Inormation Policy Analyst

Ofce o Personnel Management

J BrChie Inormation OcerAgl Bily

Deputy Associate Director, Center or alent and CapacityPolicy

Overseas Private Investment CorporationA Willim

alent Program Manager

SANS InstituteAll Pllr

Director o Research

Social Security AdministrationJoh Smih

Chie Inormation Security OcerCiy Myhl

Director o Inormation Security & AssuranceMrrily Di

Systems I Recruitment Manager


34/36

28


United States Mint (Department o the reasury)R Smrgli

Chie Inormation Security Ocer

United States Geological SurveyA. Wir

Department o Veteran Aairs

ri HummrDirector o alent Management Oce

Li M. JohoHuman Capital Planning Development and Outreach Oce,Management Analyst

Scholarship or Service Program/Inormation AssuranceScholarship Program Alumni

Di CiyAlumnus o the Scholarship or Service Program

Alx EiAlumnus o the Inormation Assurance Scholarship Program(Department o Deense)

Prik KllyAlumnus o the Scholarship or Service Program

Joh LGuriAlumnus o the Scholarship or Service Program (Departmento Homeland Security)


35/36


36/36

1100 N York Au nwSui 1090 eastWhigo dc 20005

h

13200 Wool Prk RoHro va 20171

h

cyber in-security strengthening the federal cyber security workforce-[2009[1].07.22]

Documents