Fork me on GitHub

CultureAndOrganization -> Education and Guidance: Aligning security in teams

Risk and Opportunity

Risk: The concept of Security Champions might suggest that only he/she is responsible for security. However, everyone in the project team should be responsible for security.
Opportunity: By aligning security SME with project teams, a higher security standard can be achieved.

Usefulness and Requirements of this Activitiy

Usefullness: Very High
Required knowledge: High (two disciplines)
Required time: High
Required resources (systems): Very Low

Additional Information

Implementation hints:

OWASP SAMM VERSION 2

ISO27001 2017