Intelligence

Creating corporate knowledge used in software security activities throughout the organization.

Practices that result in collections of corporate knowledge used to carry out software security activities, including both proactive security guidance and organizational threat modeling.