For orgs that rely heavily upon outsourced development/technical resources (IT Outsourcing: ITO), it's important to ensure that contracts include covenants for the vendor to provide cyber (security) education, training & awareness (SETA).
Furthermore, a right to audit clause should be included as well that allows for the client to review SETA content, as well as attendance & scoring.