How mature is your controls implementation?
The Gartner Cybersecurity Controls Assessment (CCA) enables cybersecurity leaders to compare their controls implementation against globally recognized frameworks and standards, as well as their peers.
The Gartner Cybersecurity Controls Assessment (CCA)
Rate your cybersecurity program’s defensibility with one tool.
Become a Gartner for CISOs client to gain access to the Cybersecurity Controls Assessment that empowers you
and your team to:
Learn More
© 2022 Gartner, Inc. and/or its affiliates. All rights reserved.
Research
How to Build a Robust, Defensible Security Program that Enables Business Growth and Agility
Infographic
Are you a highly effective
cybersecurity leader?
Learn more about the tool to prioritize specific controls and critical areas that need improvement as well as identify the top 5 investment opportunities.
1 set of questions
3 controls frameworks
4 types of
risk cohorts
+
+
=
many configurations of the report
1 set of questions
Rank each control’s maturity and rate its importance on the impact of cybersecurity.
Compare the implementation of your controls against three common industry controls frameworks: ISO/IEC 27002:2013, NIST CSF v1.1, NIST SP 800-53.
3 controls frameworks
Sample Report
IT Score for Security and Risk Management
eBook
3 Must-Haves in Your Cybersecurity Incident Response Plan
Determine your benchmark or risk cohort based on six organizational characteristics.
4 types of risk cohorts
Receive a customized report on your overall maturity — highlighting the top 5 investment opportunities — as well as detailed controls maturity analysis and peer benchmarks.
Expand your knowledge with other recommended Gartner research:
DRAFT