NICE Framework v2
Workforce Framework for Cybersecurity (NIST SP 800-181r1)
workforce
us
At a glance
| Steward | NIST (National Initiative for Cybersecurity Careers and Studies) |
| Canonical page | NICE Framework Resource Center |
| Version | 2.0.0 |
| Released | 2024-03 |
| Source format | NIST Cybersecurity and Privacy Reference Tool (CPRT) JSON export |
| License | Public domain (works of the United States Government) |
framework_summary slug |
nice-v2 |
Structure in cybed: terms
Counts
| Measure | Value |
|---|---|
| Work roles (organizing units) | 41 |
| Strict elements (numbered statements) | 2,115 |
| With-examples elements | 2,115 |
| Examples (separate from elements) | 0 |
| Elements per work role (strict and with-examples) | 51.6 |
NICE’s strict and with-examples counts are identical. The framework encodes detail entirely in numbered statements, so the ingestion has no prose-embedded clarifications or annex examples to lift into separate cybed:Example nodes.
Provenance
Source
NIST’s CPRT JSON export. Retrieval URL and reference checksum live in the package’s provenance.yml.
Ingestion
scripts/010-ingest-nice.R parses the CPRT structure into the cybed schema. Stage the JSON file at data/raw/nice/cprt-export.json per docs/framework-data-sources.md.
License
NIST CPRT data is in the US public domain. The package does not bundle the source JSON. Users stage it locally.
Caveats
- DCWF aligns to NICE and shares element identifiers across the two frameworks. Summing element counts across NICE and DCWF will double-count shared identifiers. Filter on
framework_slugwhen summing. - The ingested data reflects the CPRT export retrieved at ingestion time. Re-run the ingestion script against a newer export to pick up subsequent NICE versions.
- A small number of work roles carry a disproportionate share of element coverage. See the top NICE work roles query.
Reuse
Public domain