Fork me on GitHub

Culture and Org. -> Education and Guidance: Regulary security training for everyone

Risk and Opportunity

Risk: Understanding security is hard, for interal as well as external employees.
Opportunity: Regulary security training for everyone.

Exploit details

Usefullness: Medium
Required knowledge: Medium (two disciplines)
Required time: Low
Required resources (systems): Low

Additional Information

Implementation hints: Often, external employees are not invited for interal trainings. This activity focuses on providing security trainings to internal as well as external employyes. It is conducted every two weeks for around one hour.
OWASP SAMM 1 Mapping: EG2-B