Cybersecurity Maturity Model - HHS.gov
HC3 Intelligence Briefing
Cybersecurity Maturity Models
08/06/2020
Report #: 202008061030
Agenda
? Executive Summary
? Background
? What is Cybersecurity Maturity
Model(CMM)
? History of CMM
? Why use CMM
? How to use CMM
? Notable Cybersecurity Maturity Models
? Cybersecurity Capability Maturity Model
(C2M2)
? NIST Cybersecurity Framework
? Cybersecurity Maturity Model Certification
? How can CMM be used to protect the
Health/Public Health Sector
? Using CMMs to provide customer with
continuous service
? Using CMMs to protect sensitive
information
? Using CMMs to comply with laws and
regulations
Slides Key:
Non-Technical: managerial, strategic
and high-level (general audience)
Technical: Tactical / IOCs; requiring
in-depth knowledge (sysadmins, IRT)
TLP: WHITE, ID# 202008061030
2
Executive Summary
? Cybersecurity Maturity Models:
? Attempt to collect the best cybersecurity practices;
? Are developed by a collaboration of experts from diverse backgrounds;
? Consider the dispersion in size, knowledge, skills, abilities, and experience of
organizations that will use the model;
? Take a life cycle and continuous improvement approach to cybersecurity
?
Cybersecurity Models help organizations
? Provide services for their customers without interruption;
? Protect sensitive customer and proprietary information; and
? Comply with laws and regulations that govern
their operations.
TLP: WHITE, ID# 202008061030
3
Cybersecurity Maturity Model
?
Provides a structure for organizations to baseline current capabilities in cybersecurity workforce planning,
establishing a foundation for consistent evaluation
?
Management tool for leadership in identifying opportunities for growth and evolution
Optimizing
Managed/Review
Defined/Maintenance
Developing
Initial
NICCS (2014)
TLP: WHITE, ID# 202008061030
4
Maturity Model History
2020
Cybersecurity
Maturity
Model
Certification
(CMMC)
2012
Cybersecurity
Capability
Maturity
Model (C2M2)
1986
Capabilities
Maturity
Model (CMM)
2006
Capability
Maturity
Model
Integration
(CMMI)
2013
NIST
Cybersecurity
Framework
(CSF)
TLP: WHITE, ID# 202008061030
5
................
................
In order to avoid copyright disputes, this page is only a partial summary.
To fulfill the demand for quickly locating and searching documents.
It is intelligent file search solution for home and business.
Related download
- the systems security engineering capability maturity model
- capability maturity model for protective security
- the fdic s information security program 2019
- establish a cybersecurity maturity model standard
- cybersecurity capability maturity model white paper
- cybersecurity maturity model
- information technology security configuration management
- security assessment report template
- recordkeeping maturity assessment tool
- it security policy justice
Related searches
- nist cybersecurity risk assessment template
- hhs pmap
- hhs opioid tapering guidelines
- cybersecurity resources for small businesses
- best cybersecurity stocks to buy
- hhs vaccine distribution
- hhs distribution phase 3
- phase 3 hhs december 16
- cybersecurity policy for small business
- hhs hiv guidelines
- cybersecurity risk assessment template
- hhs vaccine update