Your browser version is outdated. We recommend that you update your browser to the latest version.

If you have some elements of an information security management system (ISMS) in place and not sure of how well you are doing or what should be addressed next in your desire for continual improvements, conside a maturity level assessment.

Methodology:

A maturity level assessment is based upon definitions provided in the Capability Maturity Model Integration (CMMI®) for Services by the Software Engineering Institute (SEI) and Carnegie Mellon University. CMMI® models are not processes or process descriptions, rather the process areas are considered against existing processes. The security categories and processes being measured will be based on industry best practices such as provided in the International Organization for Standardization (ISO). 

Expected Outcome(s):

A maturity level assessment report that will indicate how your organization is doing according to industry best practices. It will provide you specific guidance on areas for improvement, should you wish to mature your security organization.