Security Journey Blog

Security Culture Security Journey News

Mar 1, 2023

[Hackernoon] ChatGPT Will Change Cybersecurity…but How?

This article was written by John Campbell for HackerNoon. ChatGPT, OpenAI's impressive chatbot, has fueled a leap in the global understanding of the potential of artificial intelligence (AI).

Read More - [Hackernoon] ChatGPT Will Change Cybersecurity…but How?

OWASP

Feb 28, 2023

How Financial Institutions Can Use The OWASP Security Model

The OWASP Maturity Model helps organizations create their own security roadmap. We'll break down the OWASP Maturity Model and walk through an example of an organization using the model to improve their application security. 

Read More - How Financial Institutions Can Use The OWASP Security Model

Application Security Security Journey News

Feb 24, 2023

[Dark Reading] 'New Class of Bugs' in Apple Devices Opens the Door to Complete Takeover

This article was written by Nate Nelson for Dark Reading. With the right kind of exploit, there's hardly any function, app, or bit of data an attacker couldn't access on your Mac, iPad, or iPhone.

Read More - [Dark Reading] 'New Class of Bugs' in Apple Devices Opens the Door to Complete Takeover

Secure Coding Training Research

Feb 23, 2023

Benefits of Progressive Learning Paths for AppSec Education

Learning is a lifelong journey, no matter your age, and when educational content is built with learning science principles in mind – learning can also be effective.

Read More - Benefits of Progressive Learning Paths for AppSec Education

Secure Coding Training Compliance & Regulations

Feb 16, 2023

Explained: Executive Order on Improving the Nation's Cybersecurity

It's often said that government policies can't keep up with technology. Yet, in a time where technology evolves quickly, cybersecurity is growing in importance to stand up against increasingly...

Read More - Explained: Executive Order on Improving the Nation's Cybersecurity

Secure Coding Training Security Culture

Feb 10, 2023

Best AppSec Education Platform [2023]

If you are building a secure coding training program, working with experts in the field is your key to success. In doing so, you are going to research different secure coding training companies to see which is the best fit for you. 

Read More - Best AppSec Education Platform [2023]

Security Culture Security Journey News

Feb 9, 2023

[Help Net Security] Establishing Secure Habits for Software Development in 2023

This article was written by Amy Baker for Help Net Security. As a new year commences, it’s not unusual for people to take the opportunity to adopt better practices and principles and embrace new ways of thinking in both their personal and professional lives.

Read More - [Help Net Security] Establishing Secure Habits for Software Development in 2023

Secure Coding Training Research

Feb 8, 2023

How Code Scanning Tools Are Letting You Down

Do you rely on code scanning tools to ensure your code is secure? Or do you combine code scanning tools with code reviews and secure code training? Recent research shows that code scanning tools alone may not be enough to protect against vulnerabilities.  

Read More - How Code Scanning Tools Are Letting You Down

Secure Coding Training Research

Feb 2, 2023

Secure Code Training vs. Code Scanning Tools

According to the EMA research, 69.3% of organizations have SDLCs (Software Development Lifecycle) that miss critical security steps. With a growing number of vulnerabilities, organizations are looking into how they can secure their SDLC.  

Read More - Secure Code Training vs. Code Scanning Tools

News and Announcements

Jan 31, 2023

Security Journey Announces Unified Education Platform for Enhanced AppSec Training

The most adopted secure coding training solution helps companies satisfy regulatory requirements such as PCI and supports the White House Executive Order on cybersecurity. 

Read More - Security Journey Announces Unified Education Platform for Enhanced AppSec Training

Application Security Security Journey News

Jan 30, 2023

[DEVOPS Digest] Is the Developer the Forgotten Non-Malicious Insider Threat?

This article was written by John Campbell for DEVOPS Digest. Gartner named software supply chain attacks the second biggest threat for 2022 and predicted that 45% of organizations will have experienced one or more software supply chain attacks by 2025.

Read More - [DEVOPS Digest] Is the Developer the Forgotten Non-Malicious Insider Threat?

Application Security Security Culture

Jan 24, 2023

International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits

Jan 24^th has been proclaimed by the United Nations Generation Assembly as the International Day of Education, seeking to raise awareness about the need to invest in people and the importance of education.

Read More - International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits