Certified Chief Information Security Officer (CCISO) — Question 6
Which of the following can the company implement in order to avoid this type of security issue in the future?
Answer options
- A. Network based intrusion detection systems
- B. An audit management process
- C. A security training program for developers
- D. A risk management process
Correct answer: C
Explanation
Implementing a security training program for developers is crucial as it educates them on secure coding practices, thereby reducing vulnerabilities in software. While network-based intrusion detection systems, audit management processes, and risk management processes are important, they do not directly address the root cause of security issues stemming from developer oversight.