Hey I'm with you... I literally have a talk I give at my company about security being every developer's job (it's called "Developers are bad at security" and it's very popular).
I'm not arguing that it's "not their job", I'm saying they are less likely to have been trained in security because of the nature of their job...
I'm not arguing that it's "not their job", I'm saying they are less likely to have been trained in security because of the nature of their job...