CSCv7|18.8

Title

Establish a Process to Accept and Address Reports of Software Vulnerabilities

Description

Establish a process to accept and address reports of software vulnerabilities, including providing a means for external entities to contact your security group.

Reference Item Details

Category: Application Software Security

Audit Items