Home
The IAM Maturity Index

How mature is your identity program?

A rapid, vendor-neutral self-assessment of your identity & access management across the six domains that decide whether you're breach-resilient or breach-bound. Answer 12 questions, get an instant maturity profile, a radar of your strengths and gaps, and tailored next steps. Built from 12+ years securing regulated enterprises — and relevant to any industry.

6 domains12 questions~2 min0 sign-up · 0 data stored
1 · Your industry — tailors the regulatory lens on your results
Private & anonymous — everything runs in your browser. Nothing is sent or saved.
DomainQuestion 1 of 12

Question

Pick the option closest to your reality today
IAM Maturity Indexhelloaditi.au
Your result

Your identity maturity profile.

0.0out of 5.0
Regulatory lens

Domain breakdown

Your priority moves

The three domains where you'll get the most risk reduction for the least effort — each links to a practitioner playbook.

Discuss closing these gaps
How the score is calculated

A transparent, CMMI-style model — no black box:

  1. Each of the 6 domains is assessed by 2 behaviourally-anchored questions, each answered on a 1–5 scale (Initial → Optimised).
  2. A domain score is the average of its two answers (1.0–5.0).
  3. Your overall score is the mean of the six domain scores.
  4. The score maps to a maturity tier:
1.0–1.8 Initial1.8–2.6 Developing2.6–3.4 Defined3.4–4.2 Managed4.2–5.0 Optimised

Domains map to NIST CSF, ISO 27001, the ACSC Essential Eight and APRA CPS 234 — see the mapping in Measuring IAM Maturity. Everything is computed in your browser; no responses are stored or sent.

IAM Maturity Index · Aditi Shah · helloaditi.au — a CMMI-style identity maturity self-assessment. Generated from your responses; nothing was stored.
Copied ✓