Description

Product Security curates and maintains a list of mandatory and recommended security training. The available training content will be regularly reviewed and expanded to help address the security needs of the organization.

Offering teams ensure each of their associates takes the required training relevant to their role on the team before contributing to the development of an Offering.

This task should be done prior to associate contribution to the Offering for new Offerings.

Definition of Done

• All associates have taken the required training relevant to their role.

• Onboarding documentation for the team has been updated to require secure development training.

• Attestation that all members have taken the required training is provided on this issue.

• The onboarding documentation is linked to this issue.

• A link to this issue has been submitted as evidence to the offering registry at https://product-security.pages.redhat.com/offering-registry/offerings/openshift-servicemesh/evidence/secure_development_training/

References and Examples

• Example Onboarding Documentation

• Example Training Tracker