>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SA-16Developer-Provided Training

>Control Description

Developer-provided training for external and internal developers is critical to C-SCRM. It addresses training the individuals responsible for federal systems and networks to include applicable development environments. Developer-provided training in this control also applies to the individuals who select system and network components. Developer-provided training should include CSCRM material to ensure that 1) developers are aware of potential threats and vulnerabilities when developing, testing, and maintaining hardware and software, and 2) the individuals responsible for selecting system and network components incorporate C-SCRM when choosing such components. Developer training should also cover training for secure coding and the use of tools to find vulnerabilities in software. Refer to Appendix F for additional guidance on security for critical software.

>Cross-Framework Mappings

SCF

TDA-16
Compare

Ask AI

Configure your API key to use AI features.