Canadian businesses and industries struggle to meet their cybersecurity needs. There are four key workforce development challenges:

  • Generating and retaining cybersecurity operations talent to meet the needs of the Canadian labour market
  • Ensuring contributing technical and non-technical roles have required knowledge, skills and abilities
  • Being responsive to the changing technology landscape
  • Normalizing cybersecurity work and activities within the Canadian workplace

This Canadian Cybersecurity Skills Framework aligns with the robust and detailed U.S. National Initiative on Cybersecurity Education Cybersecurity Workforce Framework, but provides an organizational security lens and addresses unique Canadian labour market needs. This framework will better guide cybersecurity workforce development actions that will support business and industry.

Cybersecurity Skills Framework

FEEDER ROLES: All IT and related fields, Management, Business Analysts, Project Managers, Communications Specialists, Policy Analysts, Legal Professionals, Financial and Risk Analysts, HR specializations, etc.

Business Oriented Roles

Cybersecurity management within the organization - technical and non-technical roles
Executive Leadership Legal & Privacy Advisors Planning & Policy Analysts Program & Project Managers Communications Staff Training Staff Cybersecurity Managers
Development of the digital infrastructure, systems and software – project and technical roles
Architects & Engineers Research & Development System Requirements Analysts Test & Evaluation Staff System Developers Software Developers
Ensuring secure operations of digital system and data management – technical roles
Data & Info Systems Managers System Analysts System Administrators Network Administrators Data Administrators Identity, Authentication & Encryption
Cybersecurity Operations (includes digital forensics) – cybersecurity operations technical roles
Cybersecurity Ops Manager Vulnerability Analyst Cybersecurity Technician Cybersecurity Ops Analyst Incident Responder Digital Forensics Analysts
Includes digital forensics from the NICE 'Investigate' category
Learn about Security Generalist roles.
Learn how the Framework can be applied to small and medium organizational contexts