Organizational security leaders should assess their application security posture and develop strategies to manage security vulnerabilities.
https://www.securitymagazine.com/blogs/14-security-blog/post/98109-how-to-assess-your-organizations-application-security
