Skip to main content
MuonPartners
Services
Architecture

Solution design and technology roadmapping

Solution AssessmentTechnology RoadmapsIntegration DesignSolution ArchitectureTechnical Design
Cyber Security

Security assessments, IAM, and compliance

AssessmentsIAMComplianceSecurity BaselineCyber Innovation
Network and Platform

Network architecture and cloud platforms

Network DesignCloud StrategyModernisation
Enterprise Architecture

Business-technology alignment

Business AlignmentPortfolio AnalysisGovernance
View all services
ProjectsCase StudiesInsightsToolsAbout
Contact Us

Services

Architecture
Solution AssessmentTechnology RoadmapsIntegration DesignSolution ArchitectureTechnical Design
Cyber Security
AssessmentsIAMComplianceSecurity BaselineCyber Innovation
Network and Platform
Network DesignCloud StrategyModernisation
Enterprise Architecture
Business AlignmentPortfolio AnalysisGovernance
ProjectsCase StudiesInsightsToolsAboutContact
Get in Touch
MuonPartners

Strategic technology consulting for Australian organisations navigating complexity.

Services

  • Architecture
  • Cyber Security
  • Network and Platform
  • Enterprise Architecture

Company

  • About
  • Products
  • Frameworks
  • Cross-Framework Mapping
  • Projects
  • Case Studies
  • Insights
  • Contact

Contact

  • [email protected]
  • Australia
  • LinkedIn

© 2026 Muon Partners. All rights reserved.

ABN 50 669 022 315 · A Muon Group company.

Privacy PolicyTerms of Service
  1. Frameworks
  2. >C2M2
  3. >Situational Awareness
  4. >Situational Awareness - Objective 3
  5. >C2M2-SITUATION-3E
C2M2-SITUATION-3EActive

Relevant information from outside the organization is collected and made available across the organization to enhance situational awareness

Statement

Relevant information from outside the organization is collected and made available across the organization to enhance situational awareness

Location

Domain
Situational Awareness
Objective
Situational Awareness - Objective 3

Practice Details

Identifier
C2M2-SITUATION-3E
Domain
Situational Awareness
Objective
Objective 3
Maturity Level
MIL-3

Help Text

In addition to data collected through monitoring and internal information sources, processes are in place to collect information from external organizations that may add detail or clarity to situational awareness. For example, staff may monitor and collect information from a number of resources that provide reliable cybersecurity information, such as forums, vendors, InfraGard, ISACs, and CISA Central. External data is analyzed prior to sharing to ensure shared information is relevant and useful to recipients and to highlight specific areas for attention. The situational awareness information is then shared with appropriate stakeholders such as organizational leadership, incident response personnel, and asset owners.

Related Practices · Information Sharing: This practice is part of a group of cross-domain practices that enable information sharing with organizational stakeholders. These include: THREAT-1i, THREAT-2h, THREAT-2k, RISK-1c1d, SITUATION-3a, SITUATION-3c, SITUATION-3d, SITUATION-3e, RESPONSE-2g, RESPONSE-3c, RESPONSE-3f. · Progression: This practice is part of a practice progression. Practice progressions are groups of related practices that represent increasingly complete or more advanced implementations of an activity. The practices in this progression include: SITUATION-3c, SITUATION-3e, SITUATION-3f.

AESCSF
AESCSF-SITUATION-3eequivalentvia derived-shared-practice-structure
View in graphReport an issue
← Back to Situational Awareness - Objective 3
Situational Awareness - Objective 37 controls
C2M2-SITUATION-3AMethods of communicating the current state of cybersecurity for the function are established and maintainedC2M2-SITUATION-3BMonitoring data are aggregated to provide an understanding of the operational state of the functionC2M2-SITUATION-3CRelevant information from across the organization is available to enhance situational awarenessC2M2-SITUATION-3DSituational awareness reporting requirements have been defined and address timely dissemination of cybersecurity information to organization-defined stakeholdersC2M2-SITUATION-3ERelevant information from outside the organization is collected and made available across the organization to enhance situational awarenessC2M2-SITUATION-3FA capability is established and maintained to aggregate, correlate, and analyze the outputs of cybersecurity monitoring activities and provide a near-real-time understanding of the cybersecurity state of the functionC2M2-SITUATION-3GPredefined states of operation are documented and can be implemented based on the cybersecurity state of the function or when triggered by activities in other domains