See ISCM Capability.
NISTIR 8011 Vol. 1
A security capability with the following additional traits:
• The purpose (desired result) of each capability is to address specific kind(s) of attack scenarios or exploits.
• Each capability focuses on attacks towards specific assessment objects.
• There is a viable way to automate ISCM on the security capability.
• The capability provides protection against current attack scenarios.
NISTIR 8011 Vol. 1 under ISCM Capability