According to a recent LinkedIn post from DeNexus, the company is highlighting a proposed framework aimed at reconciling several widely used operational technology (OT) cybersecurity maturity models. The post points to challenges in current approaches, noting that existing frameworks may not adequately capture the “building” phase of OT security programs, which can leave reported maturity scores flat despite ongoing investments.
Claim 55% Off TipRanks
- Unlock hedge fund-level data and powerful investing tools for smarter, sharper decisions
- Discover top-performing stock ideas and upgrade to a portfolio of market leaders with Smart Investor Picks
The LinkedIn post describes how DeNexus’s Director of OT Cybersecurity, Donovan Tindill, outlines a public framework that harmonizes CMMI, NIST CSF, and C2M2 into a single, consistent model. A key feature is an added “Developing” level, positioned between Level 1 and Level 2, designed to quantify formative progress so teams can report maturity more like project completion percentages.
According to the post, the framework employs cumulative scoring without rounding up, which is presented as making assessment results more defensible when reporting to leadership. The commentary also notes that because three of the most-used frameworks do not fully align, different assessors can assign divergent scores to the same environment, reinforcing the need for more consistent measurement.
For investors, the initiative suggests DeNexus is positioning itself as a thought leader in OT cybersecurity governance and metrics, an area of growing importance as industrial and critical infrastructure operators increase cyber spending. If adopted by users or partners, this kind of framework could deepen DeNexus’s integration into clients’ risk management processes, potentially supporting longer-term customer relationships and differentiated product or advisory offerings.
The public, feedback-driven nature of the proposed model may also strengthen DeNexus’s visibility in standards and best-practice discussions, which could enhance brand recognition and influence over purchasing decisions in the OT security market. While immediate revenue impact is not evident from the post alone, sustained engagement with this framework could help the company shape industry expectations around maturity reporting and create future opportunities for tools, analytics, or services aligned to the model.