CTI-CMM version 1.2 is here!
It's here!
Introducing the Cyber Threat Intelligence Capability Maturity Model (CTI-CMM)
What's the CTI-CMM?
The CTI-CMM is a community-driven framework designed to provide CTI programs with a roadmap to improve stakeholder support. The cornerstone of an effective CTI program—and key to most program's maturation—is rooted in the ability to understand and service internal customer needs.
As a service support function, CTI programs demonstrate value by driving down risk exposure through cyber defense actions. CTI teams develop products that provide timely and relevant insights about the cyber threat landscape, cyber threat actors, their capabilities, and motivations.
Version 1.0 consists of 11 domains, which define CTI support practices for stakeholder types found in most organizations. Through a series of common stakeholder use cases, the CTI-CMM offers prescriptive practices and measures to define how a CTI team can mature its level of support to each stakeholder type.
In version 1.1, we released a Beta assessment tool, built as an Excel spreadsheet, for CTI programs to benchmark their current level of support to stakeholder functions.
In version 1.2, we added three new appendices, "CTI Metrics and Measurements", "CTI Data Source Library", and "CTI Data Source Matrix". We also refined the beta assessment tool, publishing the final version and a standalone spreadsheet of the metrics to our GitHub page.
Inspired by Industry Needs, developed by those in trenches
Stakeholder First Approach
Stakeholder First Approach
Stakeholder First Approach
The success of your CTI program relies on its ability to bring value to your stakeholders, the people who make decisions and take actions to protect your organization. This CTI-CMM focuses on building capabilities to help them solve problems and create lasting value.
Maturity Alignment
Stakeholder First Approach
Stakeholder First Approach
Unlocking the full potential of your CTI program requires alignment with the capabilities of each stakeholder it supports. This CTI-CMM bridges the maturity gap by mapping specific CTI practices to the maturity level expectations of each stakeholders it supports.
It takes a village!
Stakeholder First Approach
It takes a village!
The CTI-CMM was developed collaboratively by a volunteer group of industry experts representing multiple sectors, geographies, backgrounds, and experiences. Collectively, we have built programs and led teams across tactical and strategic levels in both the vendor and consumer spaces within the public and private sectors.
Sponsored by
