18.6: Ensure Software Development Personnel are Trained in Secure Coding
CSF v1.1 References:
PF v1.0 References:
Next Version:
- Critical Security Controls Version 8:
- 16.9: Train Developers in Application Security Concepts and Secure Coding
Control Statement
Ensure that all software development personnel receive training in writing secure code for their specific development environment and responsibilities.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]