In 2004, the US Department of Defense (DoD) established Directive 8570.1: Information Assurance Training, Certification and Workforce Management. It requires that all DoD information assurance technicians and managers are trained and certified to effectively defend DoD information, information systems and information infrastructures. DoD Directive 8570.01 Directiveâs accompanying manual identifies the specific certifications mandated by the Directiveâs enterprise-wide certification program.
The ultimate vision of the Directive is a sustained, professional IA workforce with the knowledge and skills to effectively prevent and respond to attacks against DoD information, information systems, and information infrastructures. This effort will enable DoD to put the right people with the right skills in the right place.
Current status of the 8570.01 Manual (DoD 8570.01-M)
The DoD 8140 Manual replaces the DoD 8570 Manual, âInformation Assurance Workforce Improvement Program,â which focused solely on qualifying a section of the cybersecurity workforce centered on information assurance and computer network defense professionals using a narrow set of requirements.
DoDD 8140 provides guidance and procedures for the training, certification, and management of all government employees who conduct Information Assurance functions in assigned duty positions. These individuals are required to carry an approved certification for their particular job classification.
DoD 8570 / 8140 Approved Baseline Certifications
Â
Information Assurance Technical (IAT) |
|---|
| IAT Level I (Tech I) | IAT Level II (Tech II) | IAT Level III (Tech III) |
|---|---|---|
| CompTIA A+ | CCNA | CISA |
| CompTIA Network+ | CompTIA Security+ | CompTIA CASP+ |
| SSCP | CompTIA CySA+ | CCSP |
| CND | CND | CISSP |
| CCNA | SSCP | Â CIH |
| Â | Â | Â |
Information Assurance Management (IAM) |
|---|
| IAM Level I (MGT I) | IAM Level II (MGT II) | IAM Level III (MGT III) |
|---|---|---|
| CND | CAP | CCISO |
| CompTIA Cloud+ | CISSP | CISSP |
| CompTIA Security+ | CISM | CISM |
| CAP | CompTIA CASP+ | Â |
| Â | CCISO | |
| Â | Â | Â |
| Â |
Information Assurance System Architects and Engineers (IASAE) |
|---|
| IASAE I | IASAE II | IASAE III |
|---|---|---|
| CISSPÂ (or Associate) | CISSPÂ (or Associate) | CISSP |
| CompTIA CASP+ | CompTIA CASP+ | CCSP |
| CSSLP | Â | Â |
| Â | Â | Â |
Cyber Security Service Providers (CSSP) |
|---|
| CSSP Analyst 1,2 | CSSP Infastructure Support 1 | CSSP Incident Responder 1,2 | CSSP Auditor 1 | CSSP Manager 1 |
|---|---|---|---|---|
| CEH | SSCP | CEH | CEH | CISSP-ISSMP |
| CompTIA CySA+ | CEH | CHFI | CompTIA CySA+ | CISM |
| CompTIA Cloud+ | CompTIA CySA+ | CompTIA CySA+ | CompTIA Pentest+ | CCISO |
| CompTIA Pentest+ | CHFI | CompTIA Pentest+ | CISA | Â |
| CCNA | CND | CCNA | Â | |
| Â CIH | CompTIA Cloud+ | CHFI | Â | |
| Â | Â | Â | Â |
Legal: Main Program source DoDD 8570 website, CompTIA, Microsoft and other product and certification vendors, All other product names mentioned herein including are trademarks or registered trademarks of their respective owners. The Vendor certification programs and description of their programs are the property of the respective companies.