"Security engineering isn't about adding a bunch of controls to something. It's about coming up with security properties you'd like a system to follow, choosing mechanisms that enforce these properties, and assuring yourself that your security properties hold" says Veeral Patel after giving up on reading Ross Anderson's quintessential book.
So what he did was invent his own curriculum to study the discipline. Does what he have in his GitHub repo hit the mark? Sadly, NO. Why people continue to "publish" documentation in GitHub baffles me. It's for code people!
Engineering is about process. You'll learn more by studying NIST SP 800-161 volume 1 and volume 2. Become a Systems Security Engineer. Solve hard systems security engineering problems. Certify as an CISSP-ISSEP. Be All That You Can Be!
Ps. we'll have to give him credit for digging up a link to the Orange book