This article provides guidance on training and awareness opportunities in the field of software security. It examines the state of the practice of commercial/non-profit software security training and awareness offerings and makes recommendations for goals and curricula contents.