The Department of Defense (DoD) has established critical DoD 8140 compliance deadlines that impact all civilian employees and military service members assigned to positions within the DoD Cyber Workforce Framework (DCWF). To remain compliant, individuals in cybersecurity roles must meet the 8140 certification requirements, including foundational, residential, and continuous professional development qualifications.
The DoD 8140 framework provides a broader, more dynamic approach compared to its predecessor, DoD 8570 vs 8140, by emphasizing evolving Knowledge, Skills, and Tasks (KSATs) tailored to combat emerging cyber threats. ONLC's cutting-edge DoD cybersecurity training prepares you to meet these evolving requirements while protecting critical IT infrastructures.
ONLC delivers industry-leading DoD 8140 training that ensures both exam success and real-world readiness. Our courses are designed to align with DoD cyber workforce framework requirements, empowering you to take on the toughest IT challenges with confidence.
Don't wait to ensure your compliance with DoD 8140 certification requirements and secure your future in cybersecurity. Enroll with ONLC today and gain the expertise to effectively protect and defend critical systems.
Instructor-led Training (ILT) -or- On-Demand
Our Instructor-led Training (ILT
) courses for DoD 8140 are live, interactive, and hands-on. These sessions are taught by experienced trainers who can observe your work in real-time and provide personalized guidance. Moreover, hands-free audio lets you easily ask questions and participate in class discussions. You can attend live ILT sessions from any ONLC center 
or from the comfort of your own location using our remote training options. .
ONLC On-Demand courses are a flexible alternative for those who prefer a self-paced option. These eLearning courses combine video tutorials, hands-on labs and exercises, allowing you to study using your own equipment, whenever and wherever works best for you. With 24/7 access over several months, you can learn at your own pace and schedule. Look for "On-Demand " in the course title to identify these self-study options.
and the option to retake any course with our free refresher course ONLC's Group Training solutions are designed to streamline the process of upskilling your team for DoD 8140 compliance, saving you valuable time and money. Our flexible training delivery options include onsite instruction, online sessions for attendees across multiple locations, or a hybrid of both to meet your needs.
For private sessions, course content can be tailored to align with your specific learning goals, schedules, and budget requirements. Whether you're training a small team of 10 or an entire division of 1,000, ONLC provides expert instructors, dedicated support staff and robust resources to ensure your DoD 8140 training is effective and impactful.
Discover more about our group training solutions and request a personalized quote for your training needs at Group Training .
Department of Defense ( DoD ) 8140 Directive requires every full and part-time military service member, defense contractor and civilian employee with privileged access to US Department of Defense information systems (IS) to obtain industry certification credentials that have been accredited by the American National Standards Institute (ANSI).
Stay ahead of your work role qualifications with training from ONLC. Our courses are designed to align with DoD 8140 work role requirements and empower you to protect critical IT environments effectively.
DoD 8140 Work Role proficiency levels (i.e., Basic, Intermediate, Advanced) provide the measure of capability to perform the work role successfully.
DoD 8140 qualifications shown are based on training available from ONLC. Other credentials may be available outside of ONLC's offerings.
Only one (1) qualification in a block is required. Additionally, Training/Certifications/Education aligned to higher proficiency levels can qualify lower proficiency levels.
Click Work Role to view/hide qualifications
CYBER IT (OPR: DoD CIO) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one is needed) |
INTERMEDIATE (only one is needed) |
ADVANCED (only one is needed) |
(411) Tech Support Specialist |
|||
(421) Database Administrator |
|
||
(431) Knowledge Manager |
|
||
(441) Network Operations Manager |
|
||
(451) System Administrator |
|
|
|
(632) Systems Developer |
|
|
|
(641) Systems Requirements Planner |
|
||
(651) Enterprise Architect |
CISSP-ISSEP* |
||
(661) R&D Specialist |
|
||
(671) System Testing & Eval. Specialist |
|
||
* CISSP-ISSAP, CISSP-ISSEP and CISSP-ISSMP require CISSP certification + years of work experience + passing the exam associated exam (ISSAP, ISSEP or ISSMP). ** CompTIA rebranded CASP+ to SecurityX. CASP+ exam CAS-004 retires 06/17/2025. SecurityX exam CAS-005 has been released. |
|||
CYBERSECURITY (OPR: DoD CIO) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(212) Cyber Defense Forensics Analyst |
|
||
(462) Control Systems Security Specialist |
|
||
(511) Cyber Defense Analyst |
|||
(521) Cyber Defense Infrastructure Support Specialist |
CISSP-ISSEP*
|
||
(531) Cyber Defense Incident Responder |
|
||
(541) Vulnerability Assessment Analyst |
CEH |
||
(611) Authorizing Official/Designating Representative |
|
CISSP-ISSEP* CISSP-ISSMP* |
|
(612) Security Control Assessor |
|
||
(622) Secure Software Assessor |
|
|
|
(631) Information Systems Security Developer |
|
||
(652) Security Architect |
|
CISSP-ISSEP* |
|
(722) Information Systems Security Manager |
|
CISSP-ISSMP* |
|
(723) Communications Security COMSEC Manager |
|
|
|
* CISSP-ISSAP, CISSP-ISSEP and CISSP-ISSMP require CISSP certification + years of work experience + passing the exam associated exam (ISSAP, ISSEP or ISSMP). ** CompTIA rebranded CASP+ to SecurityX. CASP+ exam CAS-004 retires 06/17/2025. SecurityX exam CAS-005 has been released. |
|||
CYBER ENABLERS (OPR: DoD CIO) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(211) Forensics Analyst |
|
|
|
|
|||
INTEL ENABLERS (OPR: DoD OUSD I&S) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(111) All-Source Analyst |
|
|
|
|
|||
SOFTWARE ENGINEERING (OPR: DoD OUSD R&E) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(461) Systems Security Analyst |
|
|
|
|
|||
CYBER EFFECTS (OPR: DoD OUSD PCA) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(121) Exploitation Analyst |
|
|
|
|
|||
DATA/ARTIFICIAL INTELLIGENCE (OPR: DoD CDAO) - DoD 8140 Qualifications |
|||
| WORK ROLE (in numeric order) |
BASIC (only one needed) |
INTERMEDIATE (only one needed) |
ADVANCED (only one needed) |
(422) Data Analyst |
|
|
|
|
|||
Click the title of the classes marked with the green flag (
) to see specific locations and dates of Ready to Run classes. Click the title of the classes marked with the yellow flag (
) to see specific locations and dates of Early Notice classes.
Below are brief overviews of the certification training ONLC offers that aligns with DoD 8140 work role qualifications. Certifications are grouped by program vendor then alphabetical order, not by level or training sequence.
CFR CyberSec First Responder (CFR) by CertNexus is a comprehensive certification designed to validate the knowledge and skills required to protect critical information systems. The CFR credential also confirms the abilities required to deal with a changing threat landscape and will be able to assess risk and vulnerabilities, acquire data, perform analysis, continuously communicate, determine scope, recommend remediation actions, and accurately report results.
CCNA Cisco Certified Network Associate (CCNA) is an entry-level IT certification that validates fundamental networking skills and access, security fundamentals, automation plus IP connectivity and services. The CCNA credential is the starting point for a career focuses on Cisco-based technology.
CCNP-Security Cisco Certified Network Professional Security (CCNP-Security) is a professional level certification that confirms core security solutions skills. Additionally, network engineers at this level can design, implement and troubleshoot complex Cisco Networks.
A+ CompTIA's A+ credential certifies that technicians have a broad base of knowledge and competency in core hardware and operating system technologies in areas such as installation, preventative maintenance, networking, security and troubleshooting. A+ certification confirms a tech's ability to perform tasks such as installation, configuration, diagnosing, preventive maintenance and basic networking.
CASP+ This certification is being rebranded as SecurityX. The CASP+ exam CAS-004 retires 06/17/2025. Please plan accordingly if you are already in process for CASP+. Unexpired CASP+ exam vouchers can be used for the SecurityX exam CAS-005. Those with an active CASP+ certification will automatically receive the rebranded SecurityX badge. Jump to SecurityX
Cloud+ This vendor-neutral certification from CompTIA validates the skills needed to maintain and optimize cloud infrastructure services. Cloud+ certification also confirms the skills necessary for secure cloud operations across all platforms.
CySA+ Cybersecurity Analyst from CompTIA is an intermediate-level security certification that applies behavioral analytics to the IT security market to improve the overall state of IT security.
Network+ CompTIA's Network+ validates the knowledge and skills of networking professionals—ability to describe the features and functions of networking components and to manage, maintain, troubleshoot, install, operate and configure basic network infrastructure.
PenTest+ From CompTIA, PenTest+ certification is a vendor-neutral credential that verifies competency in the knowledge and skills required to plan and scope an assessment, understand legal and compliance requirements, perform vulnerability scanning and penetration testing, analyze data, and effectively report and communicate results.
Security+ This CompTIA cybersecurity certification validates knowledge of communication security, infrastructure security, cryptography, operational security, and general security concepts.
SecurityX CompTIA SecurityX (formerly CASP+) will continue to be approved for the same U.S. DoD Directive 8140.03M work roles as CASP+. This vendor-neutral, expert level certification for security architects and senior security engineers proves competency in enterprise security; risk management; incident response; research and analysis; and integration of computing, communications, business disciplines and enterprise-level cybersecurity threats.
CEH EC Council's Certified Ethical Hacker (CEH) certification teaches knowledge and tools malicious hackers have so you'll know how to look for weaknesses and vulnerabilities to better protect systems.
CHFI The Computer Hacking Forensic Investigator (CHFI) certification by EC-Council is designed to provide skills to identify an intruder's footprints and to properly gather the necessary evidence to prosecute in the court of law.
CND The Certified Network Defender (CND) certification is EC-Council's core-level certification that focuses on creating Network Administrators who are trained on protecting, detecting and responding to the threats on the network.
CISSP By ISC, the Certified Information Systems Security Professional certification provides information security professionals with not only an objective measure of competence, but a globally recognized standard of achievement. This credential is ideal for mid- and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers.
CISSP-ISSAP | CISSP-ISSEP | CISSP-ISSMP
These ISC certifications require CISSP certification + years of work experience + passing the associated exam (ISSAP, ISSEP or ISSMP).
ONLC can help your agency personnel meet DoD 8140 qualifications with our cyber security training classes. Individuals can select classes from our public class schedule.
Department of Defense ( DoD ) Directive 8140 FAQs
Cybersecurity personnel must be compliant with DoD 8140 work role and proficiency level to perform their duties. Review the Frequently Asked Questions (FAQs) and when you're ready to train, contact ONLC for our hands-on, instructor-led classes that meet (DoD) Directive 8140 qualifications. See FAQs 
DoD 8140 Group Training Option
ONLC offers complete learning solutions so training coordinators can quickly and successfully upskill their teams while maintaining their budget. Training can be via our public class schedule or private sessions delivered virtually or onsite. We can also customize content to meet the client's specific needs and technologies. To discuss our group training capabilities and to receive a price quote complete our quick Group Training Request form or call 1.800.288.8221 (weekdays).
Volume Discounts with ONLC Learning Credits
Get maximum buying power and flexibility for ONLC's public classes with ONLC Learning Credits. They are a great way to prepay for training, secure a substantial discount and extend the life of any "use or lose" funding by up to 12 months. Credits are good on both live, instructor-led classes and On-Demand self-study courses! See discounts & details .
ONLC can assist agency personnel achieve cybersecurity certification to be DoD 8140.03 compliant. To learn more about the high quality training ONLC provides that will help you achieve a proficiency level for a DoD work role, register for classes, or if you have questions please contact an ONLC Education Advisor weekdays via chat or by calling...
1.800.288.8221
(weekdays)
Facebook
LinkedIn