Cybersecurity capacity building has emerged as a notable matter for numerous jurisdictions. Cyber-related threats are posing an ever-greater risk to national security for all countries, irrespective of whether they are developed or in the midst of transitioning. This paper presents the results of two qualitative studies using the Cybersecurity Capacity Maturity Model (CCMM) for nations: (1) Interactive Management (IM) and (2) focus groups to analyse the current state of Spring Land’s cybersecurity capacity. A total of 26 participants from government agencies and five national experts from the Spring Land National Cybersecurity Authority (NCSA) contributed to this study. The results show that Spring Land has many issues such as lack of cybersecurity culture and collaborative road-map across government sectors which results in instability within the country. The assessments feed into the requirement analysis of the National Cybersecurity Capacity Building Framework that can be utilised to organise and test the cybersecurity for nations.