Federal Information Security Management Act failed to recognize the need to classify and professionalize cybersecurity. The Office of Personnel Management has apparently embraced FISMA’s silence on the matter. The draft Senate bill charges OPM with developing a cybersecurity workforce strategy within 180 days and with establishing an occupation classification within one year of the bill being passed. The White House, in its May 12 cybersecurity legislative proposal, avoided any mention of creating a cybersecurity job series, but noted: “The recruitment and retention of highly-qualified cybersecurity professionals is extremely competitive””]
Source: https://www.healthcareinfosecurity.com/blogs/doesnt-opm-get-cyber-reform-p-957