One of the most frequent questions my team and I get asked is: “Can you help us build a test plan?” In fact, 59% of security practitioners cite a “lack of systematic approach to defining testing (e.g.