This was created in Omnigraffle and exported to Visio for those less fortunate than myself. It may need some tweaking in Visio. You need to right click and download linked file otherwise you browser will try to render it unsuccessfully.
Omnigraffle version for those that have seen the light
Piece I did to show the relationships between assets and risks/threats . Aligned to SABSA
Piece I did to show the relationships between assets and risks/threats and opportunities. Aligned to SABSA
Covers things like CVE, CVSS, MAEC, CAPEC etc
Vulnerability scanning of builds and devices - process
This is a generic model (draft) which describes the Business Drivers and Goals of a Security Operations Function along with Roles and Responsibilities, necessary processes and process flows for Intelligence Management and Security Monitoring.