Maryland's Local Cybersecurity Assessment tool follows the NIST CSF (v1.1) framework. Each control will be scored with the maturity scale for both the National Cybersecurity Review (NCSR) and the State Minimum Cybersecurity Standards (SMCS). This will allow you to submit both the NCSR and fulfill the certification requirement for the SMCS.

Click h​ere to access the Local Cybersecurity Assessment Tool. ​

You can use the tool to begin collecting the documentation needed to complete the assessment. 

Recommended Steps:

1. Create a folder for the corresponding documents
2. Label each document (number and name) for easy reference in the tool
3. Write a high level description of the corresponding document, process, or procedure in the tool. 
4. If you do not have a corresponding document, process, or procedure- no worries! Just write N/A. That will become part of the remediation process.

Please contact MLCC.DOIT@Maryland.gov for any questions.