Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Secure Coding Training

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.

Compliance & Regulations

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.

Topics

Posts by Security Journey/HackEDU Team

Compliance & Regulations

Nov 21, 2022

Your Guide to Developer Training Requirements in AppSec Compliance

Organizations that develop software know that application security is a top priority. Safeguarding customer data is critical. There are many rules, regulations, and frameworks in place to protect...

Application Security

Nov 3, 2022

Filling the Application Security Education Gap

While we’ve seen promising steps in the right direction when it comes to application security, there is still a significant gap in secure coding knowledge across the entire software development...

Application Security

Nov 2, 2022

Learning Swing: Measuring Knowledge Gain in Secure Coding Training Programs

A measurable increase in a learner’s knowledge after completing training is an essential component to any successful education program. Measurable knowledge gain is one way to prove your program’s effectiveness and value.

Security Culture Security Journey News

Oct 31, 2022

[Dark Reading] Does Security Have to Get Worse Before It Gets Better?

This article was written by Amy Baker for Dark Reading. How to solve the software vulnerability problem across the entire SDLC.

Security Culture Security Journey News

Oct 25, 2022

[Dark Reading] Security Leaders are Calling for Industry to Take Action and Programmatically Improve Secure Coding Education

This article was posted on Dark Reading. Currently, none of the top 50 undergraduate computer science programs in the U.S. require a course in code or application security.

Application Security

Oct 7, 2022

Beyond Security Awareness: Safer Apps through Education

The past decade has seen security awareness go from a new concept to a security strategy embedded in most organizations. Several regulations recommend security training but do so in very broad terms.

Secure Coding Training

Sep 21, 2022

Three New Lessons to Improve Password Security

Keeping user passwords secure should be a top priority for every system administrator. Stolen login credentials are one of the easiest and most common ways for cybercriminals to gain entry to systems...

Compliance & Regulations Security Journey News

Sep 16, 2022

[Security Week] Industry Reactions to Govt Requiring Security Guarantees From Software Vendors

This article was written by Eduard Kovacs for Security Week. The White House has announced new guidance with the aim of ensuring that federal agencies only use secure software.

Secure Coding Training

Sep 15, 2022

Improve Your Rust Code Security Today

Rust is an extremely popular programming language, claiming the title of most loved language for seven years in a row in the annual Stack Overflow Developer Survey.

OWASP

Sep 13, 2022

Beyond the OWASP Top 10 for Companies Subject to PCI Compliance

Many customers don’t want their developers to merely retake the same material year after year. They want substantive training to enhance knowledge and skills. And, of course, many customers must provide secure coding training that fulfills PCI Requirement 6.5.

Security Culture Security Journey News

Sep 2, 2022

[Dark Reading] Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds

This article was originally posted on Dark Reading. The US government and the Open Source Security Foundation have released guidance to shore up software supply chain security, and now it's up to developers to act.

News and Announcements

Aug 16, 2022

Introducing Our New UI: A Simplified Experience to Enhance Learner Engagement

We’re constantly evolving at Security Journey.

Security Journey Blog

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

Posts by Security Journey/HackEDU Team

Your Guide to Developer Training Requirements in AppSec Compliance

Filling the Application Security Education Gap

Learning Swing: Measuring Knowledge Gain in Secure Coding Training Programs

[Dark Reading] Does Security Have to Get Worse Before It Gets Better?

[Dark Reading] Security Leaders are Calling for Industry to Take Action and Programmatically Improve Secure Coding Education

Beyond Security Awareness: Safer Apps through Education

Three New Lessons to Improve Password Security

[Security Week] Industry Reactions to Govt Requiring Security Guarantees From Software Vendors

Improve Your Rust Code Security Today

Beyond the OWASP Top 10 for Companies Subject to PCI Compliance

[Dark Reading] Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds

Introducing Our New UI: A Simplified Experience to Enhance Learner Engagement

Contact Us

Contact Us

Contact Us