Cybersecurity, Privacy, & AI

Trending Now

Report From FDLI Annual Meeting: FDA’s Expanding Use of AI – What Regulated Industry Should Know • NIST Revises SP 800-70 | National Checklist Program for IT Products: Guidelines for Checklist Users and Developers • Cyberattacks Are Now Part of US Counterterrorism Strategy • What’s Driving the Air Force OT Cyber Office’s Massive FY 2027 Budget Request? • DHS Units to Re-Up Contract With Controversial Mobile Device Data Extractor

Published on December 8, 2021 • Cyber

U.S. Dept. of Energy Seeks Comment on Updated Cybersecurity Capability Maturity Model

Jon Kraft | Shutterstock

Shortly before Thanksgiving, the Department of Energy issued a request for public comment on Version 2.0 of its Cybersecurity Capability Maturity Model (C2M2), which it released in July 2021 to help organizations of all sectors, types and sizes to “evaluate and improve their cybersecurity capabilities, considering their specific risk environment,” and to strengthen their operational resilience.

C2M2 – not to be confused with the DoD’s CMMC – “is a voluntary tool, tailored specifically for the energy industry, that enables companies to set targets, evaluate and benchmark their cybersecurity capabilities, and use the results to prioritize actions and investments.” It is “scalable for a company of any size” and “designed to evaluate practice in both the information technology (IT) and operational technology (OT) environments.” Comments on Version 2.0 and any additional information commenters wish to provide are due by Monday, December 27, 2021.

Source:

Akin Gump: U.S. Dept. of Energy Seeks Comment on Updated Cybersecurity Capability Maturity Model

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.