Complete appropriate SSML readiness Tiers

• Work with assigned Security Architect on fulfillment Tier 0 (assigned for offering orientation) as absolute minimum for GA or any kind of service preview which operates with live data.
• Assign engineering resources to support security effort
• Provide necessary evidence within SSML JIRA
• Note that Tier 1 and Tier 2 are desired for GA. If these are not complete you will not be blocked from releasing. However, you should review and make a plan to complete as soon as possible. For example, the Penetration Test is in Tier 2 and it is desired to have this down prior GA. However, if it is not feasible for the pen test team to complete, the release will not be blocked.

Full SSML documentation and guidance: https://docs.engineering.redhat.com/x/lMc7CQ

SSML Quick Start Guide: https://docs.google.com/document/d/1sB3eUMzCxX9xQ2kWewdwvMRZOrCqXOz-hevg7H6MHM0/edit 

Official Deliverable

• Completed Tier 0 - blocker for GA or service preview operating with live data (not just internal testing data).
• Completed Tier 1 - desired for GA (preferable to have prior GA and the team should plan to do this and target GA. However, it is not ultimately a blocker, need to be fulfilled ASAP after GA)
• Completed Tier 2 - required for critical offerings and desired for all others (preferable to have prior GA and the team should plan to do this and target GA. However, it is not ultimately a blocker, need to be fulfilled ASAP after GA)