Check My NOC
Check my NOC

NOC Code for Cybersecurity Specialists in Canada (NOC 21220) — 2026 Guide

By Check My NOC · Updated June 2026

If you work in cybersecurity and are applying for Express Entry or a PNP, your NOC code is likely 21220. Wrong code = refusal. This guide helps you confirm.

What is NOC 21220?

NOC 21220 covers professionals who implement and monitor security measures protecting networks, devices, and data. It is classified at TEER 1.

Qualifying job titles include:

  • Cybersecurity analyst
  • Cybersecurity consultant
  • Application security engineer
  • Informatics security analyst
  • IT security specialist
  • Systems security analyst
  • Cyber operator

Your title doesn't need to match exactly — your duties do.

Express Entry Eligibility

NOC 21220 is TEER 1. It qualifies for the Federal Skilled Worker Program, Canadian Experience Class, and the 2026 STEM category-based draws. You can receive an Invitation to Apply (ITA) even with a lower CRS score during targeted draws.

Duties Checklist

Check off what applies to your actual job:

0 of 10 selected — NOC 21220 is likely correct with 5+ matches.

Mostly software work? See NOC 21231 / 21232 below.

Verify your NOC on CheckMyNOC →

NOC 21220 vs 21231 vs 21232

NOC CodeTitleTEERPrimary Focus
21220Cybersecurity specialists1Security operations, incident response, risk assessment
21231Software engineers and designers1Software design, development, testing, integration
21232Web developers and programmers1Web application design, development, integration

Rule: What fills 80% of your day? Security → 21220. Building software → 21231 or 21232.

Common Refusal Scenarios

  • Titled “IT Security Analyst” but claimed 21231 — duties didn't match. Refused.
  • DevSecOps engineer claimed 21220 but reference letter described mostly development work. Rejected.
  • Reference letter said “responsible for IT security” — too vague to verify. Flagged.

Reference Letter Tips

  • Use specific language: not “managed cybersecurity” but “conducted vulnerability assessments using penetration testing tools”
  • Mirror the duties checklist above
  • Mention time allocation per duty area where possible
  • Avoid: “helped with security,” “supported the IT team”

Good example:

“Monitored network traffic using SIEM tools, investigated suspicious activity, and led incident response for internal security breaches.”

Weak example:

“Worked on cybersecurity and helped protect company systems.”

Not Sure About Your NOC?

If you're still unsure whether 21220 is the right code for your role, verify your duties against the official NOC 2021 database or use a scoring tool before submitting your Express Entry profile.

Verify your NOC code on CheckMyNOC →

Related Guides

Sources

  • Employment and Social Development Canada. NOC 2021 — 21220 Cybersecurity specialists. noc.esdc.gc.ca
  • Immigration, Refugees and Citizenship Canada. Express Entry eligibility. canada.ca

FAQ

What is the NOC code for a cybersecurity specialist in Canada?
Cybersecurity specialists typically fall under NOC 21220 (Cybersecurity specialists, TEER 1). This covers roles focused on protecting networks, devices, and data through security operations, incident response, and risk assessment.
Is NOC 21220 eligible for Express Entry?
Yes. NOC 21220 is TEER 1, making it eligible for the Federal Skilled Worker Program, Canadian Experience Class, and most Provincial Nominee Programs. It also qualifies for the 2026 STEM category-based Express Entry draws, where you can receive an ITA even with a lower CRS score.
What is the difference between NOC 21220 and 21231?
NOC 21220 is for cybersecurity specialists whose primary work is security operations, risk assessment, and incident response. NOC 21231 is for software engineers whose primary work is designing, developing, and testing software applications. If security fills 80% of your day, use 21220.
Can a DevSecOps engineer use NOC 21220?
Only if the majority of your documented duties align with NOC 21220's main duties — security monitoring, incident response, vulnerability assessment, and policy development. If your reference letter describes mostly software development or infrastructure-as-code work, NOC 21231 or 21232 may be the better fit.
What should a reference letter for NOC 21220 include?
It should list specific, verifiable security duties such as 'conducted vulnerability assessments using penetration testing tools,' 'monitored network traffic via SIEM platforms,' or 'led incident response for internal breaches.' Avoid vague phrases like 'helped with security' or 'supported the IT team.'
Related: How to check a NOC code · Job title vs NOC code · Proof of work experience

Check My NOC is an independent NOC verification tool. Not affiliated with the Government of Canada, IRCC, or ESDC. This article is for informational purposes only and does not constitute immigration advice. Consult a Regulated Canadian Immigration Consultant (RCIC) or immigration lawyer for advice specific to your situation.

Last updated: June 2026