Best Practice Report

Assess Your Security Program With Forrester’s Information Security Maturity Model (FISMM)

An Extended Functional Assessment

July 3rd, 2023
With contributors:
Merritt Maxim , Amy DeMartine , Hailey DiCicco , Christine Turley


CISOs often struggle to articulate the full scope of their security responsibilities, develop a coherent strategy, prioritize their various initiatives, and connect their value to the business. In response to these challenges, Forrester developed the Forrester Information Security Maturity Model (FISMM) so that security and risk (S&R) professionals in the align phase can identify the gaps in their security program and portfolio, evaluate their maturity, and better manage a comprehensive security program.

Want to read the full report?

Contact us to become a client

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.