Capabilities Management
Capabilities Management is focused on expanding the reach and efficacy of the Security team and program.
Aspects of this service include:
Audits
The security team performs various kinds of audits for teams across the Wikimedia Foundation. The following kinds of audits are available:
- Control audits
- Penetration testing
- Compliance
- Red teaming
Project Management
As project managers, the security team provides project management and engagement for internal and external initiatives, team documentation, process, procedure and team health initiatives.
Security Awareness
In the realm of security awareness, the security team provides education and security best practice guidance to the Foundation and to the community, including the development and delivery of security-relevant educational material.
Service Creation & Maturation
The security team operationalizes changes to and drives maturity for existing security services, executing planning from leadership to coordinate and manage creation of new security services and capabilities. Following best practices, the security team also creates consumable metrics and measurements.