Benefits of Progressive Learning Paths for AppSec Education
Learning is a lifelong journey, no matter your age, and when educational content is built with learning science principles in mind – learning can also be effective.
Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
Developer-Tailored Secure Code Training: A New Approach from Security Journey
Security training for developers has traditionally been a one-size-fits-all experience—generic, compliance-driven, and...
New Content for Your Most Pressing & Emerging Vulnerabilities: AI/LLM & CWE Top 25
At Security Journey, we continuously evolve our training content to help organizations stay ahead of the most pressing...
Posts by Security Journey/HackEDU Team
Explained: Executive Order on Improving the Nation's Cybersecurity
It's often said that government policies can't keep up with technology. Yet, in a time where technology evolves quickly, cybersecurity is growing in importance to stand up against increasingly...
Best AppSec Education Platform [2023]
If you are building a secure coding training program, working with experts in the field is your key to success. In doing so, you are going to research different secure coding training companies to see which is the best fit for you.
[Help Net Security] Establishing Secure Habits for Software Development in 2023
This article was written by Amy Baker for Help Net Security. As a new year commences, it’s not unusual for people to take the opportunity to adopt better practices and principles and embrace new ways of thinking in both their personal and professional lives.
How Code Scanning Tools Are Letting You Down
Do you rely on code scanning tools to ensure your code is secure? Or do you combine code scanning tools with code reviews and secure code training? Recent research shows that code scanning tools alone may not be enough to protect against vulnerabilities.
Secure Code Training vs. Code Scanning Tools
According to the EMA research, 69.3% of organizations have SDLCs (Software Development Lifecycle) that miss critical security steps. With a growing number of vulnerabilities, organizations are looking into how they can secure their SDLC.
Security Journey Announces Unified Education Platform for Enhanced AppSec Training
The most adopted secure coding training solution helps companies satisfy regulatory requirements such as PCI and supports the White House Executive Order on cybersecurity.
[DEVOPS Digest] Is the Developer the Forgotten Non-Malicious Insider Threat?
This article was written by John Campbell for DEVOPS Digest. Gartner named software supply chain attacks the second biggest threat for 2022 and predicted that 45% of organizations will have experienced one or more software supply chain attacks by 2025.
International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits
Jan 24th has been proclaimed by the United Nations Generation Assembly as the International Day of Education, seeking to raise awareness about the need to invest in people and the importance of education.
[Help Net Security] Trained Developers Get Rid Of More Vulnerabilities Than Code Scanning Tools
This article was originally written for Help Net Security. Researchers also found that as many as 70% of organizations are missing critical security steps in their software development lifecycle (SDLC), highlighting a struggle with a ‘shift-left’ approach.
[VMblog.com] Security Journey 2023 Predictions: A Greater Focus on Application Security
This article was originally written by Amy Baker for VMblog.com. Given the incredibly competitive and challenging economic environment, we are seeing a continuous investment across organizations into application development in the race to win market share.
Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?
A new secure coding practices study, released by EMA, reveals the implementation of ‘shift-left’ is slow, with only 25% of organizations adopting a ‘shift-left’ strategy for security.