Karabacak, B., Yildirim, S. O., & Baykal, N. (2016). A vulnerability-driven cyber security maturity model for measuring national critical infrastructure protection preparedness. International Journal of Critical Infrastructure Protection, 15, 47–59. https://doi.org/10.1016/j.ijcip.2016.10.001 This paper proposes a maturity model for measuring the readiness levels of national critical infrastructure protection efforts. The development of the model involves two steps. The first step analyzes data about national cyber security projects using grounded theory to extract the root causes of the susceptibility of critical infrastructures to cyber threats. The results are realistic and intuitively appealing, demonstrating that the maturity model is useful for evaluating the national critical infrastructure protection preparedness.
Cybersecurity & Infrastructure Security Agency (2021, October). Infrastructure resilience planning framework (IRPF). CISA. This framework provides methods and tools to address critical infrastructure security and resilience through planning using a series of steps to accomplish a functional, system-based approach.
Cybersecurity & Infrastructure Security Agency (2020). Election Infrastructure Sub Sector-Specific Plan. CISA. This plan supports the security and resilience of election infrastructure as a crucial component of national security.
United States Government Accountability Office. (2021, March). Cybersecurity and infrastructure security agency: Actions needed to ensure organizational changes result in more effective cybersecurity for our nation. GAO. This report of findings details what critical infrastructure organizations need to do to accomplish a transformation to security nationwide.