Security has three main aspects; the database, data transmission, and the physical data center itself. All purchased software carries risks that are not present in in-house developed software. Education, while rarely provided by the software quality practitioner, is a necessary step in the provision of a quality product. The heavy majority of effort in the SLC is expended in the maintenance phase.
As in all other areas, the ongoing responsibility of the software quality practitioner is to monitor each situation or activity and report on its status and needs to decision-making, action-capable management.