Security Journey Blog

Security Culture

Mar 22, 2023

Customizing Your AppSec Learning Themes (with Examples)

Are you looking for ways to elevate your AppSec training? First, it's essential to keep in mind that not all learners are the same, and everyone has different learning needs and preferences – whether on an organizational level, team level, or employee level. 

Read More - Customizing Your AppSec Learning Themes (with Examples)

Application Security News and Announcements

Mar 17, 2023

Patch Tuesday: March 2023

Following March’s Patch Tuesday updates, it’s important that we don’t forget equally critical patches released earlier in the month.  

Read More - Patch Tuesday: March 2023

Application Security

Mar 16, 2023

What is Application Security Training?

Does your organization have application security training? Considering that 95% of data breaches last year were on web apps, now may be the time to invest in comprehensive training that can be applied to everyone within your SDLC. 

Read More - What is Application Security Training?

Secure Coding Training

Mar 15, 2023

What Is Secure Coding Training?

That's where secure coding training comes in - it is a proactive measure that can help software developers understand and implement security best practices in their code to protect against potential threats. 

Read More - What Is Secure Coding Training?

Compliance & Regulations

Mar 13, 2023

6 Tips To Encourage PCI Training Completion [INFOGRAPHIC]

As a program administrator, you have a lot on your plate - including how to get your employees to complete their assigned training. However, with a few small updates, you can help keep your employees engaged in their training programs. 

Read More - 6 Tips To Encourage PCI Training Completion [INFOGRAPHIC]

Compliance & Regulations

Mar 9, 2023

Top 8 PCI DSS Compliance Tips

In today's world, the security of sensitive data has become more critical than ever.  PCI DSS standards were created to protect credit cardholders' data from theft and fraud. Any organization that accepts credit card payments must comply with these standards.

Read More - Top 8 PCI DSS Compliance Tips

Application Security News and Announcements

Mar 7, 2023

What The National Cyber Strategy Means For You [2023]

The new National Cyber Strategy from the Biden administration aims to strengthen the nation's cybersecurity and protect against cyber threats. The strategy emphasizes cybersecurity more, with increased regulation, collaboration, and funding for cybersecurity initiatives. 

Read More - What The National Cyber Strategy Means For You [2023]

Research

Mar 2, 2023

Measuring the ROI of AppSec Training [INFOGRAPHIC]

Security Journey provides engaging and effective AppSec training to developers and all members of the SDLC. This infographic breaks down the ROI of AppSec training for an organization with the calculations. 

Read More - Measuring the ROI of AppSec Training [INFOGRAPHIC]

Compliance & Regulations Security Journey News

Mar 2, 2023

[SiliconANGLE] White House Publishes New National Cybersecurity Strategy

This article was written by Maria Deutscher for Silicon ANGLE. The White House has released a national cybersecurity strategy that seeks to make the digital ecosystem more resilient against hacking campaigns.

Read More - [SiliconANGLE] White House Publishes New National Cybersecurity Strategy

Security Culture Security Journey News

Mar 1, 2023

[Hackernoon] ChatGPT Will Change Cybersecurity…but How?

This article was written by John Campbell for HackerNoon. ChatGPT, OpenAI's impressive chatbot, has fueled a leap in the global understanding of the potential of artificial intelligence (AI).

Read More - [Hackernoon] ChatGPT Will Change Cybersecurity…but How?

OWASP

Feb 28, 2023

How Financial Institutions Can Use The OWASP Security Model

The OWASP Maturity Model helps organizations create their own security roadmap. We'll break down the OWASP Maturity Model and walk through an example of an organization using the model to improve their application security. 

Read More - How Financial Institutions Can Use The OWASP Security Model

Application Security Security Journey News

Feb 24, 2023

[Dark Reading] 'New Class of Bugs' in Apple Devices Opens the Door to Complete Takeover

This article was written by Nate Nelson for Dark Reading. With the right kind of exploit, there's hardly any function, app, or bit of data an attacker couldn't access on your Mac, iPad, or iPhone.

Read More - [Dark Reading] 'New Class of Bugs' in Apple Devices Opens the Door to Complete Takeover