Culture and Org. -> Education and Guidance: Regulary security training of security champions
Risk and Opportunity
Risk: Understanding security is hard, even for security champions.
Opportunity: Regulary security training of security champions.
Required knowledge: Medium (two disciplines)
Required time: Low
Required resources (systems): Low
OWASP SAMM 1 Mapping: EG2-B