ABSTRACT
With the advent of RMM, the model seeks to present the disciplines above in a process approach, which allows the organization to apply process improvement mechanisms, as well as to develop a basis for metrics and measurement. As most security professionals have experienced within their careers, it is diªcult at best to craft meaningful metrics for security implementation; as such, any tool that would assist in this capacity is very welcome indeed! It also provides a uni‚ed framework for organizing the work in the ‚eld that is performed within the organization. As is true with process maturity models, such as the Capability Maturity Model for Integration (CMMI), RMM provides a base for process institutionalization and organizational process maturity.
