The increasing labour shortage of skilled ICT personnel forces SOC and CSIRT organisations to prioritize the services they offer and optimise their workforce development strategies. Our review of currently available frameworks shows that there is no single framework that provides a complete solution to identify the required competencies of SOC and CSIRT personnel based on the services an organisation offers. We therefore introduce the Dutch Cyber Cube Method to combine the strengths of three frameworks published by ENISA, NIST, and GMU. Combining these frameworks allows for a step-wise analysis to identify the services an organisation offers, the work roles contributing to those services, and the associated tasks and competencies. reviewers J.G.M van de Ven (TNO), B. van der Kamp (NCSC), A.C. (Allard) Kernkamp (TNO) in collaboration with NCSC (Nationaal Cyber Security Centrum).