Overview[]
The Cyber Security Evaluation Program (CSEP) performs Cyber Resilience Reviews (CRRs), which measure adoption of maturity aspects of cybersecurity risk management using a common, capability-based framework. A CRR serves as a repeatable cyber review of an organization's ability to manage cybersecurity and ensure core process-based capabilities exist.[1]