1. Governance
   1. OKR 1 : To organize the Process and Procedures in a centralized structure accessible over the company, including but not limited to the Zones/Towers/Business Units and joint ventures
   2. OKR 2: To enhance the actual Application Security governance model by ensuring the properly maintenance and improvement of the current Global Application Security Policies, Standards and Guidelines.
2. Security Champion Programme
   1. OKR: To build a functional Global Application Security Champion programme that covers all the zones/tower/business units that develops application considered as Critical under the Risk Management perspective (i.e. contains PIIs and CJ information).
3. Application Security Review Process
   1. OKR: To ensure the appropriate execution of the code review assessment performed by the application security engineers across all the zones/towers/business units