About National cybersecurity capacity maturity assessment

Actors around the world, ranging from individuals to nation states, need to ensure that cyberspace and the systems dependent on it are resilient to increasing attacks. To achieve this resilience, nations need to understand what constitutes national cybersecurity capacity and what it means to be effective in cybersecurity.

The cybersecurity Capacity Model for Nations (CMM) was developed by the Global Cyber Security Capacity Centre (GCSCC) at the University of Oxford to facilitate the assessment of the maturity of a country’s cybersecurity capacity. Developed in consultation with over two hundred international experts drawn from governments, international organisations, academia, public and private sectors and civil society, the CMM reviews cybersecurity capacity across five dimensions:

• Cybersecurity Policy and Strategy;
• Cyber Culture and Society; Cybersecurity Education,
• Training and Skills;
• Legal and Regulatory Frameworks;
• Standards, Organisations and Technologies. 

NRD Cyber Security is a strategic partner of the GCSCC in deploying the CMM and facilitating the nations in the assessment of the maturity of a country’s cybersecurity capacity.

How we do it?

• In-country stakeholder consultations;
• Desk research;
• Evidence-based report, which benchmarks the maturity of a country’s cybersecurity capacity, identifies possible exposure to risks and identifies priorities for investment and future capacity building.

Benefits

• Facilitation of direct conversations with cybersecurity stakeholders from academia, civil society, critical infrastructures, legislators, government, CSIRT community, defence and criminal justice;
• Nationally owned process, supported by neutral external evaluation;
• Qualitative and quantitative benchmarking;
• Report with coordinated recommendations to guide investment priorities.