Vulnerability Coordination Maturity Model

Need Expert Guidance?
Download the VCMM Overview

To improve overall security, every organization needs to benchmark its capabilities and identify and prioritize areas that need improvement.

The Vulnerability Coordination Maturity Model (VCMM) provides a framework that evaluates five key areas to help organizations measure and evolve their vulnerability management capabilities.

Five Key Areas of the Vulnerability Coordination Maturity Model
b_organization.png

Organizational

People, process and resources to handle bugs

b_engineering.png

Engineering

Capabilities to evaluate & remediate security holes and improve software development lifecycle

b_comms.png

Communications

Ability to communicate with internal and external audiences about bugs

b_analytics.png

Analytics

Data analysis of vulnerabilities to identify trends and improve processes

b_incentive_2.png

Incentives

Ability to encourage security researchers to report vulnerabilities directly

b_download.png

Download the VCMM Overview

Want to identify the gaps in your organization's 
people, processes, & technology?