Become A Member
Capability methodology

Roles Framework

This framework sets out the typical set of skills expected of cyber and information security professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and world-renowned academics and security leaders.

Framework Abstract

The CIISec Skills Framework has not, until now, been set against a selection of security roles. This document aims to show how the skills framework (version 2.4) and other frameworks, such as the NIST National Initiative for Cybersecurity Education (NICE), can be combined to enable the high-level identification of the required skills and experience when organisations are looking to recruit into a role. It has been updated to now include the recently introduced CIISec Security Discipline G – Data Protection, Privacy and Identity Management.

The roles included in this edition are;

  • CISO
  • Head of Cyber/Information Security
  • Information Security Risk Manager
  • Information Security Risk Officer
  • System Security Manager
  • ComSec Manager
  • Senior Security Architect
  • Technical Security Architect
  • Pen tester
  • Threat Analyst
  • Vulnerability analyst

Become a member to download the Framework

This Framework has been developed over a number of years via collaboration with private and public sector organisations, world-renowned academics, security leaders and authoritative bodies.

Become a member

Already a member? Sign in to download.

Other Relevant Material

Back to Resource Centre

Skills Framework

This framework describes the range of competencies expected of Information Security and Information Assurance Professionals in the effective performance of their roles. It was developed through collaboration between both private and public sector organisations and world-renowned academics and security leaders.
Read More

Knowledge Framework

This framework expands upon the widely used CIISec Skills Framework allowing users to have a consistent view of cyber and information security. The Framework is also a baseline for the ICSF entry-level exam as a self-study material.
Read More
Back to Development Hub

Board of Directors

Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat m dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor inc. Lorem ipsum dolor sit amet, consectetur.

Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat m dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor inc. Lorem ipsum dolor sit amet, consectetur.Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat m dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor inc. Lorem ipsum dolor sit amet, consectetur.

Skip to content