The purpose of DoD Directive 8570.01 is to reduce the possibility that unqualified personnel can gain access to secure information. True
Understanding DoD Directive 8570 provides a path to understanding the current DoD Directive 8140. DoD Directive 8570 was issued in 2005 to identify, tag, track and manage the information assurance, or cybersecurity, workforce.
*CompTIA PenTest+ is 8570.01-m approved for CSSP Analyst, CSSP Incident Responder and CSSP Auditor. What Training Is Required to Achieve DoD 8570.01-m Compliance? To meet the 8570.01-m certification requirements, you’ll need a combination of training and experience, such as on-the-job training and continuing education.
Directive 8140 is the updated version of 8570 and was created to expand the work roles covered. DoD 8570.01-m is the manual that lists the IT certification requirements.
It was replaced by DoD Directive 8140 in 2015, which expands upon it. Note: The DoD used the term information assurance to describe cybersecurity in 2005, but the term has since changed to cybersecurity in most cases. Establish policy and assign responsibilities for DoD Information Assurance (IA) training, certification and workforce management.
DoD Directive 8570 was issued in 2005 to identify, tag, track and manage the information assurance, or cybersecurity, workforce. It also established a manual that includes an enterprise-wide baseline IT certification requirement to validate the knowledge, skills and abilities of people working in cybersecurity roles. It was replaced by DoD Directive 8140 in 2015, which expands upon it.
These policies made a big difference for U.S. DoD cybersecurity readiness. Not only did the DoD continue with DoD Directive 8570 for 10 years, it expanded upon it with DoD Directive 8140.
Personnel required to obtain specific cybersecurity certifications for their position category may need training. DoD Directive 8570.01-m does not specify training requirements, so IT pros need to decide what training options will best prepare them for certification.
The 8140 manual is expected to identify new requirements including cybersecurity certifications, training and on-the-job experience, but those won’t be known until the new manual is released . Stay tuned for two more articles that dive further into these DoD directives.
Examples include cybersecurity workers in the Air Force and workers performing DoD work with defense contractors, such as General Dynamics IT (GDIT). Personnel receive a position category, such as IAT II.
It was replaced by DoD Directive 8140 in 2015, which expands upon it. Note: The DoD used the term information assurance to describe cybersecurity in 2005, but the term has since changed to cybersecurity in most cases. The purpose of DoD Directive 8570 was twofold:
DoD Directive 8570 did not specify which cybersecurity certifications meet the policy requirements. Instead, 8570.01-m was established to provide them. 8570.01-m is still used and actively managed by the DoD. An 8140 manual is expected to be released in the next year.