CMM Review Switzerland (as part of GCSCC Research and CMM Reviews with EU Partnering)

Summary

The Global Cyber Security Capacity Centre (GCSCC) undertook a review of the maturity of cybersecurity capacity in Switzerland at the invitation of the Swiss Federal Department of Foreign Affairs and the Swiss Federal Department of Finance. The objective of this review was to enable Switzerland to gain an understanding of its cybersecurity capacity in order to strategically prioritise investment in cybersecurity capabilities.

Details

Context

The GCSCC of the Department of Computer Science of the University of Oxford published the first  Cybersecurity Capacity Maturity Model for Nations (CMM) in 2016 to help nations understand what works, what does not work and why, across all areas of cybersecurity capacity. The aim is to enable governments and enterprises to adopt policies and make investments that have the potential to significantly enhance safety and security in cyberspace.

Activities

Over the period 19–22 November 2019, the following stakeholders participated in roundtable consultations: academia, criminal justice, law enforcement, information technology officers and representatives from public sector entities, critical infrastructure owners, federal and local crisis managers, policy makers, information technology officers from the government and the private sector (including financial institutions), telecommunications companies, the banking sector as well as international partners. Due to the continuous structural evolvement of cybersecurity-related entities within the federal administration and beyond, however, no single date for timeliness of data can be provided for this report. The data reflected in the report has been collected from November 2019 to May 2020 and the report was published in November 2020.

For more information, see the report on Swiss cybersecurity as of 2020.