Fork me on GitHub

Culture and Organization -> Education and Guidance: Regular security training of security champions

Risk and Opportunity

Risk: Understanding security is hard, even for security champions.
Opportunity: Regular security training of security champions.

Assessment

Additional Information

Dependencies: Each team has a security champion

Implementation hints

Usefulness and Requirements of this Activity

Usefullness: Very High
Required knowledge: High (two disciplines)
Required time: Low
Required resources (systems): Low

OWASP SAMM VERSION 2

ISO27001 2017