The MITRE-developed cyber preparedness (Cyber Prep) framework provides an approach for addressing the cyber threats faced by a mission or an organization.
Improving Cyber Security and Mission Assurance via Cyber Preparedness (Cyber Prep) Levels
Download Resources
PDF Accessibility
One or more of the PDF files on this page fall under E202.2 Legacy Exceptions and may not be completely accessible. You may request an accessible version of a PDF using the form on the Contact Us page.
The MITRE-developed cyber preparedness (Cyber Prep) framework provides an approach for:
The nature of cyber threats in general—and advanced cyber threats in particular—requires a longer-term commitment from senior leadership, including vision, strategy, and investment prioritization as well as the organizational agility to respond to ever-changing tactics and techniques. This paper provides recommendations on how to characterize an organization's cyber threat environment and identifies a number of defensive tools and techniques that will provide a solid start for improving security and resiliency against advanced cyber threats. With broad adoption, the five Cyber Prep levels are expected to provide a simple and common method for assessing the degree of cyber preparedness associated with an organization and/or its components.
- addressing the cyber threats that an organization or mission faces;
- determining the level of preparedness necessary to ensure mission success;
- facilitating strategic planning for cyber security by setting preparedness objectives;
- and assisting in the prioritization of cyber security investment planning and management decisions.