How many controls does C2M2 have?

C2M2 contains 24 controls organized across 5 domains.

Where does C2M2 apply?

C2M2 is applicable in United States. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does C2M2 map to?

C2M2 has control-to-control mappings with 480 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with C2M2 compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

C2M2

Cybersecurity Capability Maturity Model for energy sector.

Domains

C2M2: Incident Response & Recovery

C2M2: Asset Identification & Governance

C2M2: Access Management

C2M2: Supply Chain & Configuration

C2M2: Systems Security

Frequently Asked Questions

Map C2M2 to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform