Cybersecurity, Privacy, & AI

Trending Now

Your AI Agent Could Become Your Biggest Insider Threat • The New Cyber Deterrent Isn’t a Weapon. It’s Cyber Recovery. • Commerce OIG Calls for Changes to NIST Vulnerability Database Management • Pentagon Looks to AI, Other Tech to Help Tackle Contested Logistics Challenges • How Defensive Cyber Responds to Hockey-Stick Growth of AI-Driven Threats

Published on July 28, 2021 • Cyber

DOE Updates its 2012-Vintage Cybersecurity Capability Maturity Model

Jon Kraft | Shutterstock

The Department of Energy has released version 2 its Cybersecurity Capability Maturity Model (C2M2), a tool initially released in 2012 to help companies evaluate and improve their cybersecurity capabilities. The update is part of the Biden administration’s Industrial Control Systems Cyber Initiative, a 100-day plan to address international cyber threats to critical infrastructure. DOE worked with the Commerce Department’s National Institute of Standards and Technology in updating the tool.

DOE is also working with CISA on the initiative. House Homeland Security Committee Ranking Member John Katko has introduced the DHS Industrial Control Systems Capabilities Enhancement Act, which would codify CISA’s role in securing industrial control systems.

Sources:

Nextgov: Energy Updates Assessment Tool for Administration’s 100-Day Cybersecurity Sprint
Security Magazine: Department of Energy releases updated Cybersecurity Capability Maturity Model

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.