Playbooks Index

Sector- or engagement-specific assessor playbooks, scorecards, and adoption guides. This folder holds operational instruments — quick-scorecards, audit checklists, engagement methodologies — that pair with the wiki’s frameworks/, maturity-models/, and architectures/ pages but are tailored to a specific sector, regulator, or engagement context.

Scope distinctions:

• practices/ holds defender best-practice patterns (general-purpose controls and playbooks).
• maturity-models/ holds axis-of-measurement instruments (CMMs, tier ladders).
• playbooks/ holds adoption / assessment instruments tailored to a specific audience or sector — what an internal CISO, a 2nd-party advisor, or a regulator picks up to run an engagement.

The folder is deliberately bounded to engagement-shaped artifacts and is not a catch-all for new content classes.

Pages

• Assessor’s Quick Scorecard — Secure-SDLC and AI Practices for a Large Canadian Bank — A condensed two-party-advisor assessment instrument for evaluating a large Ontario-based federally-regulated bank’s secure-SDLC practices…