What is DoD Directive 8570?
With the United States Department of Defense (DoD) signing off the DoD Directive 8140 in 2015, the previously applicable DoD Directive 8570 has been replaced. DoD 8570 functions are now serving a bigger purpose under the guidelines of DoD 8140 until the existing manual is updated. The directive sets out the requirements for the “Information Assurance” workforce covering policies and responsibilities regarding the training, certification, and workforce management. For an entry-level job position in the Department of Defense, DoD 8570 compliance is a must. All DoD IA jobs are classified as Technical (IAT), Management (IAM), System Architect and Engineer (IASAE), and Cyber Security Service Provider (CSSP). These position categories are then further divided into individual levels. EC-Council certifications are required to join the Department of Defense at a Management or CSSP level.
| Information Assurance Technical (IAT) | Information Assurance Management (IAM) | Information Assurance System Architect and Engineer (IASAE) | Cyber Security Service Provider (CSSP) |
| IAT Level I | IAM Level I | IASAE Level I | CSSP Analyst |
| IAT Level II | IAM Level II | IASAE Level II | CSSP Infrastructure Support |
| IAT Level III | IAM Level III | IASAE Level III | CSSP Incident Responder |
| CSSP Auditor | |||
| CSSP Manager |
- Personnel performing IAT and IAM functions must be certified.
- Personnel having CSSP and IASAE roles must be certified.
- All IA jobs are classified under Technical or Management (Level I, II, III), and to be qualified for the posts, personnel must be certified.
 Office of the Secretary of Defense |
Military/Defense Departments |
| Chairman of the Joint Chiefs of Staff |
Combatant Commands |
| Office of the Inspector General, DoD |
Defense Agencies |
| DoD Field Activities |
Other DoD entities |
| Management (IAM) | EC-Council Certification and Management Level DoD Job Postings |
| IAM Level II | Certified Chief Information Security Officer (C|CISO) |
| IAM Level III | Certified Chief Information Security Officer (C|CISO) |
| Cyber Security Service Provider (CSSP) | EC-Council Certification and Associated DoD Job Postings |
| CSSP Analyst | Certified Ethical Hacker (C|EH) |
| CSSP Infrastructure Support | Certified Ethical Hacker (C|EH) |
| Certified Hacking Forensic Investigator (C|HFI) | |
| CSSP Incident Responder | Certified Ethical Hacker (C|EH) |
| Certified Hacking Forensic Investigator (C|HFI) | |
| CSSP Auditor | Certified Ethical Hacker (C|EH) |
| CSSP Manager | Certified Chief Information Security Officer (C|CISO) |
Faqs
1. Can I mention DoD 8570 compliance on my resume?
2. Why should I care about DoD 8570?
3. Is Training Mandatory?
4. Why are EC-Council certifications the best among other DoD 8570 certs?
- EC-Council offers specialized certifications which focus on different domains of cybersecurity
- Mapped to several significant frameworks, including NICE/NIST Framework, NIST 800-171, CREST Framework, and more.
- EC-Council has achieved accreditation for many of its programs to meet the ANSI/ISO/IEC 17024 Personnel Certification Accreditation standard.
- Many of their programs are recognized as GCHQ Certified Training.
- Encourages and validates practically applicable technical skills
- Ensures that the participants obtain the required hands-on experience
