Per Department of Defense Manual (DoDM) 8140.03, all DoD civilian employees and military service members in DoD Cyber Workforce Framework (DCWF) under the cybersecurity workforce element must be qualified in accordance with DoDM by February 2025 to be compliant. If you, your department, or organization needs training and certification as it relates to DoD 8140, ONLC is here to help.
DoD 8140 is the replacement for DoD 8570. The comprehensive approach in DoD 8140 expands on cyber/cybersecurity work roles. Work roles are comprised of core and additional knowledge, skills and tasks (KSATs) that will continually evolve to combat on-going cyber threats.
Get approved cybersecurity training with ONLC for your work role requirements to guard computer systems against emerging threats and to safeguard IT environments. Sign up now for effective training with ONLC to be inline with your DoD 8140 work role qualifications!
Instructor-led Training (ILT) -or- On-Demand
Our Instructor-led Training (ILT
) DoD 8140 classes are live hands-on training with an online instructor. The trainer can see all the work you're doing and can provide direct assistance. There's hands-free audio for asking questions and participating in class discussions. Attend live classes at any ONLC center coast to coast or from your own location . Training is fully interactive no matter what location you choose.
Alternatively, ONLC On-Demand courses are self-study, elearning that's typically a blend of video tutorials, labs and exercises. You work through the course using your own equipment from your own location. With 24/7 access for a period of months you can learn on your own schedule at your own pace. "On-Demand " appears in the course title for this format. On-Demand may not available for all titles.
ONLC's Group Training solutions can help you save both time and money upskilling staff to be DoD 8140 compliant. Training instruction can be delivered onsite, online to accommodate attendees at multiple sites, or a combination of the two. For private sessions course content can be customized to meet specific learning objectives, schedules and budgets.
Whether training is for a group of 10 or a division of a thousand, ONLC has the experienced trainers, support staff and resources to make your DoD 8140 group training effective and successful. To learn more about our group training solutions and to request a price quote for any training needs see Group Training .
Department of Defense ( DoD ) 8140 Directive requires every full and part-time military service member, defense contractor and civilian employee with privileged access to US Department of Defense information systems (IS) to obtain industry certification credentials that have been accredited by the American National Standards Institute (ANSI).
The training, certification and workforce management requirements of Directive 8140 applies to all members of the DoD IA and Cybersecurity Personnel workforces including military, civilians, local nationals, Non-appropriated fund (NAF) personnel, and contractors. The requirements apply whether the duties are performed full-time, part-time, or as embedded duty.
An individual needs to obtain only one of the approved listed qualifications for the assigned work role and level to meet the minimum requirement.
Below are brief overviews of the certification training ONLC offers that aligns with DoD 8140 work role qualifications. Certifications are grouped by program vendor then alphabetical order, not by level or training sequence.
CFR CyberSec First Responder (CFR) by CertNexus is a comprehensive certification designed to validate the knowledge and skills required to protect critical information systems. The CFR credential also confirms the abilities required to deal with a changing threat landscape and will be able to assess risk and vulnerabilities, acquire data, perform analysis, continuously communicate, determine scope, recommend remediation actions, and accurately report results.
A+ CompTIA's A+ credential certifies that technicians have a broad base of knowledge and competency in core hardware and operating system technologies in areas such as installation, preventative maintenance, networking, security and troubleshooting. A+ certification confirms a tech's ability to perform tasks such as installation, configuration, diagnosing, preventive maintenance and basic networking.
CASP+ This certification is being renamed to SecurityX mid-December 2024. The CompTIA Advanced Security Practitioner (CASP+) certification is vendor-neutral and proves competency in enterprise security; risk management; incident response; research and analysis; and integration of computing, communications, business disciplines and enterprise-level cybersecurity threats.
Cloud+ This vendor-neutral certification from CompTIA validates the skills needed to maintain and optimize cloud infrastructure services. Cloud+ certification also confirms the skills necessary for secure cloud operations across all platforms.
CySA+ Cybersecurity Analyst from CompTIA is an intermediate-level security certification that applies behavioral analytics to the IT security market to improve the overall state of IT security.
Network+ CompTIA's Network+ validates the knowledge and skills of networking professionals—ability to describe the features and functions of networking components and to manage, maintain, troubleshoot, install, operate and configure basic network infrastructure.
PenTest+ From CompTIA, PenTest+ certification is a vendor-neutral credential that verifies competency in the knowledge and skills required to plan and scope an assessment, understand legal and compliance requirements, perform vulnerability scanning and penetration testing, analyze data, and effectively report and communicate results.
Security+ This CompTIA certification validates knowledge of communication security, infrastructure security, cryptography, operational security, and general security concepts.
CEH EC Council's Certified Ethical Hacker (CEH) certification teaches knowledge and tools malicious hackers have so you'll know know how to look for weaknesses and vulnerabilities to better protect systems.
CHFI The Computer Hacking Forensic Investigator (CHFI) certification by EC-Council is designed to provide skills to identify an intruder's footprints and to properly gather the necessary evidence to prosecute in the court of law.
CISO Chief Information Security Officer (CISO) certification by EC-Council is for top-level cybersecurity executives. This program calls for audit management, governance, IS controls, human capital management, strategic program development, and the financial expertise vital to leading a highly successful IS program.
CND The Certified Network Defender (CND) certification is EC-Council's core-level certification that focuses on creating Network Administrators who are trained on protecting, detecting and responding to the threats on the network.
CISSP By ISC, the Certified Information Systems Security Professional certification provides information security professionals with not only an objective measure of competence, but a globally recognized standard of achievement. This credential is ideal for mid- and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers.
CISSP-ISSAP | CISSP-ISSEP | CISSP-ISSMP
These ISC certifications require CISSP certification + years of work experience + passing the associated exam (ISSAP, ISSEP or ISSMP).
DoD 8140 qualifications below are based on training available from ONLC. Other credentials outside of ONLC's offerings may be applicable.
DoD 8140 Work Role proficiency levels (i.e., Basic, Intermediate, Advanced) provide the measure of capability to perform the work role successfully.
Only one (1) of the listed qualifications in a section is needed. For example, (411) Tech Support Specialist can meet the Basic level proficiency requirement with either A+ or Network+. You do not need all items within a section. Additionally, Training/Certifications/Education aligned to higher proficiency levels can qualify lower proficiency levels.
CYBER IT (OPR: DoD CIO) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(411) Tech Support Specialist |
|||
(421) Database Administrator |
|
||
(431) Knowledge Manager |
|
||
(441) Network Operations Manager |
|
||
(451) System Administrator |
|
|
|
(632) Systems Developer |
|
|
|
(641) Systems Requirements Planner |
|
||
(651) Enterprise Architect |
CISSP-ISSEP* |
||
(661) R&D Specialist |
|
||
(671) System Testing & Eval. Specialist |
|
||
* CISSP-ISSAP, CISSP-ISSEP and CISSP-ISSMP require CISSP certification + years of work experience + passing the exam associated exam (ISSAP, ISSEP or ISSMP). |
CYBERSECURITY (OPR: DoD CIO) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(212) Cyber Defense Forensics Analyst |
|
||
(462) Control Systems Security Specialist |
|
||
(511) Cyber Defense Analyst |
|||
(521) Cyber Defense Infrastructure Support Specialist |
CISSP-ISSEP*
|
||
(531) Cyber Defense Incident Responder |
|
||
(541) Vulnerability Assessment Analyst |
CEH |
||
(611) Authorizing Official/Designating Representative |
|
CISSP-ISSEP* CISSP-ISSMP* |
|
(612) Security Control Assessor |
|
||
(622) Secure Software Assessor |
|
|
|
(631) Information Systems Security Developer |
|
||
(652) Security Architect |
|
CISSP-ISSEP* |
|
(722) Information Systems Security Manager |
|
CISSP-ISSMP* |
|
(723) Communications Security COMSEC Manager |
|
|
|
* CISSP-ISSAP, CISSP-ISSEP and CISSP-ISSMP require CISSP certification + years of work experience + passing the exam associated exam (ISSAP, ISSEP or ISSMP). |
CYBER ENABLERS (OPR: DoD CIO) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(211) Forensics Analyst |
|
|
|
|
INTEL ENABLERS (OPR: DoD OUSD I&S) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(111) All-Source Analyst |
|
|
|
|
SOFTWARE ENGINEERING (OPR: DoD OUSD R&E) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(461) Systems Security Analyst |
|
|
|
|
CYBER EFFECTS (OPR: DoD OUSD PCA) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(121) Exploitation Analyst |
|
|
|
|
DATA/ARTIFICIAL INTELLIGENCE (OPR: DoD CDAO) - DoD 8140 Qualifications |
|||
WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(422) Data Analyst |
|
|
|
|
See DoD Manual 8140.03 (.pdf).
ONLC accepts completed SF-182 forms as payment for training.
ONLC can help your agency personnel meet DoD 8140 qualifications with our cyber security training classes.
Department of Defense ( DoD ) Directive 8140 FAQs
Cybersecurity personnel must be compliant with DoD 8140 work role and proficiency level to perform their duties. Review the Frequently Asked Questions (FAQs) and when you're ready to train, contact ONLC for our hands-on, instructor-led classes that meet (DoD) Directive 8140 qualifications. See FAQs
DoD 8140 Group Training Option
ONLC offers complete learning solutions so training coordinators can quickly and successfully upskill their teams while maintaining their budget. Training can be via our public class schedule or private sessions delivered virtually or onsite. We can also customize content to meet the client's specific needs and technologies. To discuss our group training capabilities and to receive a price quote complete our quick Group Training Request form or call 1.800.288.8221 (weekdays).
Volume Discounts with ONLC Learning Credits
Get maximum buying power and flexibility for ONLC's public classes with ONLC Learning Credits. They are a great way to prepay for training, secure a substantial discount and extend the life of any "use or lose" funding by up to 12 months. Credits are good on both live, instructor-led classes and On-Demand self-study courses! See discounts & details .
ONLC can assist agency personnel achieve both IT certification and DoD 8140.03 compliance. To learn more about the high quality training ONLC provides that will help you achieve a proficiency level for a DoD work role, register for classes, or if you have questions please contact an ONLC Education Advisor weekdays via chat or by calling...
1.800.288.8221
(weekdays)