Project
CMM Review Costa Rica (2024)
About
Cybil code: G1017
Status: Ongoing
From: Oct 2024
To: Feb 2025
Partners
Themes & Topics
Countries
Summary
The Ministry of Science, Innovation, Technology and Telecommunications (MICITT) of Costa Rica, in partnership with the Global Cyber Security Capacity Centre (GCSCC), has initiated a Cybersecurity Capacity Maturity Model (CMM) review to assess the country’s cybersecurity maturity. This effort is supported by the United Kingdom’s Foreign, Commonwealth and Development Office (FCDO) and reflects Costa Rica’s ongoing commitment to enhancing national cybersecurity in collaboration with international partners.
Details
Aim
The aim of this review is to assess Costa Rica’s current level of cybersecurity maturity, helping the government identify key areas for improvement and establish clear priorities to strengthen cybersecurity resilience. This initiative aligns with Costa Rica’s response to the 2022 ransomware attacks, which continue to shape its cybersecurity strategy.
Context
The CMM review in Costa Rica is based on the CMM framework, which evaluates cybersecurity capacity across five dimensions: Cybersecurity Policy and Strategy, Cybersecurity Culture and Society, Building Knowledge and Capabilities, Legal and Regulatory Frameworks, and Standards and Technologies. Conducted with contributions from national and international stakeholders, this review supports Costa Rica’s efforts to advance digital security and cyber capabilities, reinforcing the country’s role in international cyber cooperation.
This is the third CMM review of Costa Rica and it follows the regional ones that were conducted in 2016 and 2020.
The CMM supports the review of cybersecurity capacity in terms of five dimensions: Cybersecurity Policy and Strategy; Cybersecurity Culture and Society; Building Cybersecurity Knowledge and Capabilities; Legal and Regulatory Frameworks; and Standards and Technologies.
Outputs
The final output of this project will be a detailed CMM report on Costa Rica’s cybersecurity maturity, scheduled for completion in February 2025. This report will serve as a strategic resource for the government to address identified gaps and develop targeted initiatives to enhance Costa Rica’s cybersecurity capabilities.
Pictures
The Cybil project repository is being continuously updated, and the information it contains is either publicly available, or consent for publication was given by the owner. Please contact the portal manager with any additional information or corrections. Whilst every reasonable effort is made to keep the content of this inventory accurate and up to date, no warranty or representation of any kind, express or implied, is made in relation to the accuracy, completeness or adequacy of the information contained in these pages.
