HMG IA Maturity Model (IAMM)

Created:  24 Nov 2015
Updated:  08 Mar 2018
The IAMM is no longer supported by the NCSC. This page is retained for those still using the IAMM to assess and improve their organisation's security effectiveness.
Although no longer supported by the NCSC, organisations may choose to continue to use the Maturity Model to assess and improve their security effectiveness.

The IA Maturity Model

After a review of the HMG IA Maturity Model (IAMM) the NCSC has decided to withdraw support for the model, which was widely used by government departments and the broader public sector following its inception in 2008.

Retained here, or from the Downloads tab, for information are;

Services which were offered as part of the support for the Maturity Model - the independent review and the supported self-assessment - have been withdrawn.

 

Improving Information Assurance at the Enterprise Level (Good Practice Guide 28)_1.3.pdf

PDF, 1214.58KB

This file may not be suitable for users of assistive technology.

Information Assurance Maturity Model (Good Practice Guide 40)_2.1.pdf

PDF, 2424.68KB

This file may not be suitable for users of assistive technology.

CIAN 2015 02 Information Assurance Maturity Model (IAMM) Interim Guidance.pdf

PDF, 146.56KB

This file may not be suitable for users of assistive technology.

Topics

Was this information helpful?

We need your feedback to improve this content.

Yes No