18.7: Apply Static and Dynamic Code Analysis Tools

CSF v1.1 References:

PF v1.0 References:


Info icon.

The next version of the control set incorporates all or part of this control into: 16.12: Implement Code-Level Security Checks.

Control Statement

Apply static and dynamic analysis tools to verify that secure coding practices are being adhered to for internally developed software.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]