PW.2.1—Conduct Independent Security Design Review
>Control Description
Have 1) a qualified person (or people) who were not involved with the design and/or 2) automated processes instantiated in the toolchain review the software design to confirm and enforce that it meets all of the security requirements and satisfactorily addresses the identified risk information.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.