Software Development Life-Cycle (SDLC)

Does your organisation have a documented and approved software development life-cycle (SDLC) process that includes security input?

Yes, in summary the stages are: Planning -> Defining -> Designing -> Building -> Testing -> Deployment. Security input exists at all stages, starting with a risk assessment at planning stage.