Cybersecurity Capability Maturity Model (C2M2) - Cybersecurity Maturity Model Certification (CMMC) Supplemental Guidance (Draft)

Abstract

The Cybersecurity Capability Maturity Model (C2M2) focuses on the implementation and management of cybersecurity practices associated with information technology (IT), operations technology (OT), and information assets and the environments in which they operate. The model can be used to: strengthen organizations' cybersecurity capabilities, enable organizations to effectively and consistently evaluate and benchmark cybersecurity capabilities, share knowledge, best practices, and relevant references across organizations as a means to improve cybersecurity capabilities, and enable organizations to prioritize actions and investments to improve cybersecurity capabilities.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2022
Accession Number
AD1168443

Entities

People

  • Kaitlin Brennan
  • Shawn Bilak

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Computer Access Control
  • Computer Network Security
  • Computer Programming
  • Computer Security Techniques
  • Control Systems
  • Cybersecurity
  • Information Security
  • Information Systems
  • Intrusion Detection
  • Mobile Devices
  • Mobile Phones
  • Network Architecture
  • Network Protocols
  • Operating Systems
  • Organizational Structure
  • Reliability
  • Risk Analysis
  • Security Personnel
  • Software Development

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.

Technology Areas

  • Cyber