The goal of the CSMA is to provide a view of your current security posture, an objective review of existing plans, and a guide
to strategic planning. The CSMA will also help your organization develop tactical and strategic directions to further mature and
strengthen your security program efforts. Not to be forgotten, aligning your security program with the best practices outlined
in the assessment better positions your program to meet (and exceed) industry compliance standards
The Cyber Security Maturity Assessment focuses on specific controls that protect critical assets, infrastructure, applications,
and data by assessing your organization’s defensive posture. The assessment also emphasizes operational best practices for
each control area, as well as the organizational effectiveness and maturity of internal policies and procedures.
The Cyber Security Maturity Assessment focuses on specific controls that protect critical assets, infrastructure, applications,
and data by assessing your organization’s defensive posture. The assessment also emphasizes operational best practices for
each control area, as well as the organizational effectiveness and maturity of internal policies and procedures.
The CSMA assesses compliance with several industry requirements, as well as the following control sets and frameworks:
Each of these control frameworks map to one another and are designed to provide a structure with which a security program
can measure its maturity and effectiveness—now and for the future
PCI DSS
Cyber Security Framework
Data Privacy
ISO 27001
ASD Essential Eight
Vulnerability Assessment
Penetration Testing
GDPR
NIST
© All rights reserved@GRC360