This is a detailed assessment, performed over time, with interactions with all key business units.
We have reusable metrics and tools to help us assess where you are in your cyber-security maturity journey.
We then work with you to assess where you should be on the maturity scale, based on your strategic business plan over the next 5 years, including product and service development, global target markets and target industries.
We then help with a cyber-security strategy to help move you from where you are today, to your future goal.
Cyber-Security Maturity follows the classic CMMI maturity levels, used in IT for many years:
- Level 1 - "CHAMPIONS": These are the champions inside your org, trying to do there best to secure you.
- Level 2 - "PROJECTS": This is when you now have security projects, to improve your security posture.
- Level 3 - "PROCESSES": You've matured into having repeatable processes. This is where your compliance journey can begin.
- Level 4 - "AUTOMATION": You now automate and have tools for the most common processes, and the most critical.
- Level 5 - "CONTINUOUS IMPROVEMENT": By measuring your repeatable, and automated, processes you continuously improve efficiency and effectiveness.
It should be noted, that you can't skip steps, but have to move through them for it to be effective.
However, you can certainly outsource services, and buy-in products and experts who operate at a higher maturity level.
(See
Cybersecurity Capability Maturity Model (C2M2) for more details...)
Contact us more details...