Nationwide Cybersecurity Review: 2024 Summary Report

The Nationwide Cybersecurity Review (NCR) measures maturity according to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) function areas and categories to provide insight on the level of maturity and risk awareness of U.S. State, Local, Tribal, and Territorial (SLTT) governments’ information security programs. This allows decision-makers to understand how their risk tolerance and maturity compare with similar organizations and how they facilitate self-comparison from year to year.

The NCSR is scored on a seven-point scale, with “7” being the highest possible and “1” being the lowest. The recommended maturity level for U.S. SLTT governments to aspire to is a score of “5” on the NCSR scale.

The 2024 NCSR assessment was available to the U.S. SLTT community between October 2024 and February 2025. NCSR results represent 4,151 organizations from across the entire U.S. SLTT community. The majority of 2024 NCSR participants were local-level organizations, as 3,538 of the 4,151 participant organizations were local entities (85%).

Download the report to learn more about the cyber maturity of SLTTs across the nation.