Culture and Org. -> Education and Guidance: Regulary security training for everyone
Risk and Opportunity
Risk: Understanding security is hard, for interal as well as external employees.
Opportunity: Regulary security training for everyone.
Required knowledge: Medium (two disciplines)
Required time: Low
Required resources (systems): Low
Implementation hints: Often, external employees are not invited for interal trainings. This activity focuses on providing security trainings to internal as well as external employyes. It is conducted every two weeks for around one hour.
OWASP SAMM 1 Mapping: EG2-B