Nearly 80 percent of government personnel and contractors said their organization didn't provide sufficient training and guidance for software security, according to a report from non-profit IT security trade group (ISC)2.

More than a third said that improving security is training and education should be a top priority.

InfoSecurity reports that security personnel should create a checklist. The list can include questions like, "Am I meeting the National Institute of Science and Technology requirements?" and "Am I compliant with the software development life cycle?"

This story is part of Federal News Radio's daily Cybersecurity Update brought to you by Tripwire. For more cybersecurity news, click here.