Global Cyber Security Capacity Centre



Global Cyber Security Capacity Centre: National Cybersecurity Capacity Maturity Model (CMM)


Global Cyber Security Capacity Centre: National Cybersecurity Capacity Maturity Model (CMM)

The goal of the Global Cyber Security Capacity Centre (Capacity Centre) is to increase the scale and effectiveness of effective cyber security capacity building, both within the UK and internationally. The Centre will make this knowledge available to governments, communities and organisations to underpin increasing their cyber capacity in ways appropriate to ensuring a cyber space which can continue to grow and innovate in support of well-being, human rights and prosperity for all.

The five dimensions of cybersecurity

We currently consider cyber security capacity as being comprised of five dimensions:

  • devising cyber policy and strategy
  • encouraging responsible cyber culture within society
  • building cyber skills into the workforce and leadership
  • creating effective legal and regulatory frameworks
  • controlling risks through organization, standards and technology

In each dimension there are multiple factors which characterise what it means to possess cybersecurity capacity; countries, regions and organisations will have varying degrees of capacity in each factor and consequently across each and all dimensions. Indeed, we advocate that it is possible to identify a range of levels of capacity capability that might be attained.

See full report Global Cyber Security Capacity Centre

https://www.sbs.ox.ac.uk/cybersecurity-capacity/system/files/CMM%20Version%201_2_0.pdf