When a penetration test uncovers that an application's vulnerabilities are a result of inadequate security practices during development, what remediation recommendation is MOST appropriate for inclusion in the final report?
Enforcing minimum password requirements
Adopting a comprehensive Secure SDLC process
Installing antivirus software on development machines
Implementing network segmentation