EB-2 NIW for Cybersecurity Leaders in Critical Infrastructure
What it is & who it fits
NIW removes PERM and job-offer requirements when your work delivers substantial public benefit to the U.S.
Ideal for CISO, Incident Response leaders, OT/ICS Security Leads, and Sector Risk Managers across energy, water, healthcare, finance, transportation and other critical sectors.
- EB-2 basis: advanced degree (MS/PhD) or exceptional ability.
- NIW: show national importance, that you are well-positioned, and that the balance of benefits favors waiving PERM.
Why critical infrastructure = national importance
- Work within one of the 16 sectors; participation in ISAC/ISAO and interagency exercises.
- Adoption of NIST CSF 2.0 (incl. Govern) and NIST 800-53/800-171 controls.
- Mature incident response & sector risk programs with MTTD/MTTR metrics and BCP/DRP alignment.
Mapping to Matter of Dhanasar (3 prongs)
- Substantial merit & national importance: protecting services for the public and the economy; sector-level effects.
- Well positioned: role/results, MTTD/MTTR, CSF maturity, publications and LOEs.
- Balance test: public benefit outweighs the need for PERM.
Mini-scoring tool
Drag sliders or click “− / +”. The 0–5 scale is indicated next to the buttons.
Estimated NIW score: 0/25 — assessment
Dhanasar Evidence Matrix + Readiness Visualization
Table and chart occupy the full container width. Typography is clear and high-contrast.
| Dhanasar prong | Key evidence | Metrics / outcomes | Documents |
|---|---|---|---|
| 1) Merit & National Importance | Projects in Energy/Water/Healthcare/Finance; NIST CSF 2.0 adoption (incl. Govern); sector tabletop exercises; systemic risk reduction. | Incident frequency (−X%); severity of remediated vulns (CVSS); asset coverage (# sites/regions). | Project reports; LOEs from operators/ISAC; BCP/DRP plans; sector recommendations. |
| 2) Well Positioned | Role (CISO/IR/OT Sec Lead/Sector Risk Manager); 5–10+ yrs; publications/training; inter-agency initiatives. | MTTD/MTTR (↓); control coverage %; NIST 800-53/171 profiles; CSF maturity (target vs current). | Resume; recommendation letters; certificates; OKRs/KPIs; CSF roadmaps. |
| 3) Balance Test | Public benefit of expedited access to expertise: service continuity and macro-risk reduction. | Loss scenarios w/o vs with measures; recovery time; avoided economic impact. | Impact memo; LOEs from governmental/municipal partners; resilience/vuln analyses. |
FAQ & ready-to-use impact narratives: NIST • Incident Response • Sector Risk Management
Use the interactive templates to quickly draft text for your “Evidence” and “Impact” sections. Fill the fields, click “Generate/Insert example”, edit if needed, then “Copy”.
Do I need PERM and a job offer under NIW?
Does cybersecurity qualify as “national importance”?
Which letters of endorsement (LOEs) matter most?
Text generator — Sector Risk Management
Describe the sector-risk program, measurable outcomes, and coverage.
Impact narrative — Incident Response
Emphasize MTTD/MTTR improvement, scenarios, and BCP/DRP alignment.
Impact narrative — NIST / CSF 2.0 (Govern→Identify→Protect→Detect→Respond→Recover)
State the target tier, 800-53/171 controls, and proven maturity gains.
