OPM has released new guidance for agencies on identifying and addressing critical cybersecurity workforce needs.
The Federal Cybersecurity Workforce Assessment Act of December 2015 (Act) requires the federal government to identify and code positions with information technology, cybersecurity and other cyber-related functions, and this should have been completed by April 2018.
Within the next year, agencies need to identify where their greatest needs are and develop a plan to mitigate any shortages. According to the guidance agencies will need to report annually until 2022 on cyber-related work roles of critical need in the workforce and describe the roles identified and substantiate the critical needs designation.
“Agencies will annually report to OPM beginning 2019 through 2022 on their Work Roles of Critical Need and progress in mitigating skill shortages, in accordance with the instructions provided below and additional reporting guidance posted on the Federal Cybersecurity Workforce Assessment Act (FCWAA) MAX website,” specifies the guidance. “OPM will collect agencies’ Work Roles of Critical Needs and identify common needs to address from the Government wide perspective.”
See the full guidance here.