How Do You Assess Your Organization's Cyber Threat Level?
In the Cyber Prep methodology, an organization determines its target level of preparedness against cyber threats, including the advanced persistent threat, based on its assessment of the level of the adversary it faces. That is, an organization calibrates its cyber security measures, as well as its cyber security governance, to its cyber threat. Cyber Prep characterizes the cyber threat in terms of an adversary's level of capability, intent, and targeting. However, many adversaries demonstrate a mixture of levels. Organizations can differ in how they account for such adversaries.