Assessing the Maturity of National Cybersecurity and Resilience
by
George Sharkov

Abstract:

This article provides an overview of maturity levels and assessment methodologies for the evaluation of cybersecurity and resilience in relation to their applicability and usefulness at sectoral and national levels. Reference maturity models and assessment frameworks, such as CERT Resilience Management Model, Cybersecurity Capacity Maturity Model for Nations, C2M2 (Cybersecurity Capability Maturity Model), are compared and analyzed for their applicability in designing and implementing national cybersecurity strategies and programs to achieve cyber resilience. Cyber readiness indexes are also outlined in view of their use to indicate possible improvements. The author explores the development of national cybersecurity strategies with a focus on cyber maturity and provides examples. A maturity-based approach for the Bulgarian cyber resilience roadmap is also described within the context of the evolving cyber-empowered hybrid threats and the need for an institutionalized collaborative public-private resilience.

Previous Issue

This issue of Connections. The Quarterly Journal looks into a number of issues: professional military education and its role in deepening defense capabil­ities with a special focus on the South Caucasus, the defense cooperation of the South Caucasus nations with both Russia and NATO which may result in a new form of a ‘Great Game’ rivalry... Read More