R241. Define security requirements
This document contains the details of the security requirements related to the definition and management of development process of the application. This requirement establishes the importance of defining requirements that will be checked according to the security criteria of the organization.
The organization must define the information security criteria requirements that apply to the system.
OWASP-ASVS v3.1-1.10 Security is addressed within all parts of the software development lifecycle.