This step include all operational security activities. Offsensive security (often called “Red Team”) include all security testing activities. The Vulnerability management is a continuous activity where potential vulnerabilities from different tools are centralized and triaged, followed by a appropriate response using risk-based approach. Incident management correspond to the formal process before, during and after security incidents, including preparation, detection, response, as well as identifying the relevant improvement to increase the overall resiliency.