(
Cyber
Security
Capability
Maturity
Model) A self- assessment of an organization's total security preparedness from the U.S. Department of Energy. The following 10 domains are rated. See
CSF.
1. Risk Management
2. Asset, change and configuration management
3. Identify and access management
4. Threat and vulnerability management
5. Situational awareness
6. Information sharing and communications
7. Event and incident response
8. Continuity of operations
9. Supply chain and external dependencies management
10. Workforce management and cyber security program management