The Energy Department is seeking input from industry to update the Cybersecurity Capability Maturity Model designed to help organizations assess their cybersecurity posture, Nextgov reported Wednesday. DOE last revised the model in 2014 and posted the draft of the latest version on the Federal Register.
The C2M2 framework was established in 2012 as an open-source model to help fortify the security of the elctric grid. DOE used its interviews with industry experts as well as best practices cited in the National Institute of Standards and Technology’s most recent cybersecurity framework to inform the development of the latest C2M2 iteration.
Interested parties may submit feedback on the new model through Sept. 13.
