OtherUnited States
C2M2
Cybersecurity Capability Maturity Model for energy sector.
Domains
C2M2 Domain: Cybersecurity Program Management (PROGRAM)
C2M2 Domain: Cybersecurity Architecture (ARCHITECTURE)
C2M2 Domain: Workforce Management (WORKFORCE)
C2M2 Domain: Third-Party Risk Management (THIRD-PARTIES)
C2M2 Domain: Event and Incident Response, Continuity of Operations (RESPONSE)
Compare C2M2
C2M2 by Industry
C2M2 by Role
Frequently Asked Questions
What is C2M2?
Cybersecurity Capability Maturity Model for energy sector.
How many controls does C2M2 have?
C2M2 contains 22 controls organized across 10 domains.
Where does C2M2 apply?
C2M2 is applicable in United States. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does C2M2 map to?
C2M2 has control-to-control mappings with 1 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with C2M2 compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for C2M2?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.