Given that each feature is reliant on the others it is important to ensure that there is a common approach to managing each of them and the processes they employ. A capability maturity model will act as the core foundation for assuring that all the features are functioning as a whole.

Capability maturity models have a long history. One of the earliest versions in the IT space was to address systems engineering and was called CMU/SEI-95-MM-003, which was published in late 1995 by Carnegie Mellon University. This provided the foundation for other models and promoted the development of a security model called the Systems Security Engineering CMM (SSE-CMM), published in 1999 and managed by the International System ...

Get Adaptive Security Management Architecture now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.