Cyber programmes: The cyber programme defines the activities, plans, milestones, resources and costs which the organisation will deliver to meet its strategic objectives. It sets out a book of work which will assess, in line with international cyber security standards such as NIST (SCF, SP 800 – 53, SP 800 – 171), CMMC or ISO 27001 the current cyber security maturity. It can consist of over 15 separate programmes of work, covering the security domains, practices and assessment criteria defined. Programme which adopts a continuous lifcycle approach, as cyber is a continually evolving programme.