Draft Details

Review start date:Apr 1, 2021
Review end date:May 31, 2021
Contact email:mary.morgan(at)csagroup.org
Draft Scope/Description:

1 Scope

This Document describes a methodology for assessing the product software and cybersecurity maturity of an organization.  

It provides the evaluators and vendors a method to determine the maturity of the organization and products/solutions being developed regardless of solution vertical.   It covers the entire product system life cycle from conception to full commissioning and until end of life. It supports effective executive business decisions that establish a comprehensive maturity model approach to cybersecurity. 

This Document applies to all IoT and related products/solutions.

In this Document, “shall” is used to express a requirement, i.e., a provision that the user is obliged to satisfy in order to comply with the document; “should” is used to express a recommendation or that which is advised but not required; and “may” is used to express an option or that which is permissible within the limits of the Document.


You may comment on any section of this document by clicking the “Submit Comment” link at the bottom of the relevant section.