Cyber Maturity Assessment Audit

The Cyber Maturity Assessment Diagnostic (CMAD) assesses the level of information assurance and Cyber Security maturity in organisations through seven different areas.

The CMAD provides an organisation with an auditable capability to understand the “health” of your information, and a health check of how information is transacted within the organisation. The CMAD incorporates the following areas:

  • The Information Assurance Maturity Model (IAMM) and the Information  Assurance (IA) and Information Assurance Assessment Framework (IAAF) provide a common set of criteria, based on recognised standards. This allows organisations to assess their Cyber Security and Information Assurance (IA) maturity and to develop and maintain a sustainable capability.

  • National Institute of Standards and Technology (NIST) security framework.  The five Functions included in the Framework Core are: Identify, Protect, Detect, Respond, Recover.

  • ISO 27001 (formally known as ISO/IEC 27001:2013) is a specification for an Information Security Management System (ISMS). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation’s information risk management processes.

Cyber Essentials

Cyber Essentials is a UK government backed Cyber Security certification scheme recognised internationally. It sets out a good baseline of Cyber Security suitable for all organisations across all sectors. The scheme addresses five key controls, that when implemented correctly can prevent around 80% of Cyber attacks.