G.4 Training

Educating all personnel in role-specific information about the secure software development, including awareness, technical skills, and emergency response.

Controls

G.4.1 Role-based training

Provide security training for all personnel involved in software development

G.4.2 Contingency training

Provide training on procedures in the event of a security emergency.

G.4.3 Gather attack trends

Stay current on attack trends.