M2 spans 17 stages and is grouped into 4 phases. It guides the process and removes the noise that is often related to creating a CyberSecurity program and focuses on true CyberSecurity Transformation. The focus moves the organization from busy work to quantifiably reducing risk.
For the Practitioner tasked with shepherding the organization through M2, an exhaustive practitioner’s guide starts as the foundation. Easing the process of collecting and making sense of disparate pieces of data, a Practitioners Workbook is also leveraged.
In the end, the Practitioner is empowered to Create: