Essential Eight Maturity Model: Levels 0 to 3>
– arnavsharma
The Essential Eight Maturity Model is a security framework designed to help organisations manage and mitigate modern cyber security threats.
It outlines eight priority areas which organisations need to focus on when securing their networks and data.
The eight areas are:
1.
Application whitelisting – to prevent unauthorised applications from running.
2.
Patching applications to fix known vulnerabilities.
3.
Patching the operating system to fix known vulnerabilities.
4.
Minimising administrative privilege.
5.
Restricting remote access.
6.
Hardening user accounts.
7.
Responding to security incidents.
8.
Implementing multi-factor authentication.
The model consists of four levels that organisations can use to measure their compliance and progress against each of the eight essential areas.
Those levels are:
Level 0: Basic – This level requires that organisations identify and document their priorities across the eight essential areas in a security policy.
Level 1: Early Adopter – This level requires that organisations demonstrate an initial deployment or roll-out of solutions across the eight essential areas.
Level 2: Established – This level requires that organisations demonstrate the implementation of effective and comprehensive security solutions and controls across the eight essential areas.
Level 3: Advanced – This level requires that organisations demonstrate a mature and comprehensive understanding of security across all eight essential areas.
Organisations at this level should be able to demonstrate an ability to respond to cyber security incidents and mitigate the impact of those incidents.
Link: https://arnav.au/2023/10/03/essential-eight-maturity-model-levels-0-to-3/