Based on an extensive literature review, this research outlines that cybersecurity management potentially benefits from agile and that traditional practice and project methodologies are not suited anymore to adapt to the constantly evolving threat landscape and the enterprise's internal challenges related to people, technology, processes, and organization in cybersecurity.

The “M&RA Model” was incrementally evaluated and improved by analyzing and adopting qualitative data conducted by subject matter experts through brainstorming sessions and semi-structured interviews.

As part of this research, a readiness assessment model for adopting agile in cybersecurity, the “M&RA Model” was developed. The model consists of two steps: assessing the cybersecurity maturity “MA Model” and the cybersecurity readiness for agile” RA Model”. The development was based on understanding, analyzing, and comparing various established frameworks, standards, and guidelines for agile and cybersecurity.