Continue your development of a security strategy through an in-depth current state assessment of your organization.
- Define your current security capabilities and maturity levels.
- Review penetration test results to determine where vulnerabilities exist.
- Define the target state for the organization’s security.
By the end of this phase, you will have a vision for where the organization is striving to be regarding different controls.