Cybersecurity, Privacy, & AI

Trending Now

5 Structural Barriers Breaking Your Cybersecurity Compliance Framework • Everyone’s Building AI Agents. Almost Nobody’s Ready for What They Do to Identity. • GAO Identifies Shortfalls in DCSA Industrial Data Security Oversight • Disclosed Government AI Use Increased by 70% in 2025, per OMB • Congress Tries Again on National Preemptive Data Privacy Law

Published on July 28, 2021 • Cyber

DOE Updates its 2012-Vintage Cybersecurity Capability Maturity Model

Jon Kraft | Shutterstock

The Department of Energy has released version 2 its Cybersecurity Capability Maturity Model (C2M2), a tool initially released in 2012 to help companies evaluate and improve their cybersecurity capabilities. The update is part of the Biden administration’s Industrial Control Systems Cyber Initiative, a 100-day plan to address international cyber threats to critical infrastructure. DOE worked with the Commerce Department’s National Institute of Standards and Technology in updating the tool.

DOE is also working with CISA on the initiative. House Homeland Security Committee Ranking Member John Katko has introduced the DHS Industrial Control Systems Capabilities Enhancement Act, which would codify CISA’s role in securing industrial control systems.

Sources:

Nextgov: Energy Updates Assessment Tool for Administration’s 100-Day Cybersecurity Sprint
Security Magazine: Department of Energy releases updated Cybersecurity Capability Maturity Model

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.