Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

[Help Net Security] Trained Developers Get Rid Of More Vulnerabilities Than Code Scanning Tools

This article was originally written for Help Net Security. Researchers also found that as many as 70% of organizations are missing critical security steps in their software development lifecycle (SDLC), highlighting a struggle with a ‘shift-left’ approach.

Application Security Security Journey News

Jan 20, 2023

[VMblog.com] Security Journey 2023 Predictions: A Greater Focus on Application Security

This article was originally written by Amy Baker for VMblog.com. Given the incredibly competitive and challenging economic environment, we are seeing a continuous investment across organizations into application development in the race to win market share.

Application Security Research

Jan 19, 2023

Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?

A new secure coding practices study, released by EMA, reveals the implementation of ‘shift-left’ is slow, with only 25% of organizations adopting a ‘shift-left’ strategy for security.

Application Security

Jan 12, 2023

How to Measure the ROI of Application Security Training

We are currently in an application security dilemma that stems from growing security concerns, pressure on development teams, and a lack of structured security training.

Application Security Research

Jan 10, 2023

Adopting Long Lasting AppSec Habits For 2023

The new year is traditionally a time to make resolutions and form good habits. It’s an opportunity that many of us take in both our professional and personal lives to adopt better practices and...

Compliance & Regulations Security Journey News

Jan 5, 2023

[datanami] Feds Boost Cyber Spending as Security Threats to Data Proliferate

Originally posted by Alex Woodie from datanami. Cybercriminals are exploiting vulnerabilities in Web applications, which are up 210% over the past few years.

Secure Coding Training

Jan 4, 2023

Learning Science Principles in AppSec Education: Your Key to Success

Rolling out an employee training program requires commitment across the board. Stakeholders at all levels want to see a return on investment to justify the budget and time required by these programs.

Security Culture Security Journey News

Dec 22, 2022

[Security Journal Americas] A Look at AppSec Education for 2023

This article was written by Victoria Rees for Security Journal Americas. Amy Baker, Security Education Evangelist, Security Journey discusses the trends and challenges for the software development industry in 2023.

Security Culture Security Journey News

Dec 19, 2022

[Security Boulevard] Moving Beyond Security Awareness to Security Education

This article was written by Sue Poremba for Security Boulevard. While security awareness training is helpful to assist employees in recognizing threats, phishing and social engineering attacks are successful enough that it is clear that awareness training alone isn’t enough.

Application Security

Dec 9, 2022

Are You Prepared for the Non-Malicious Insider Threat?

Software supply chain risks are a highly visible part of the cybersecurity threat landscape. From President Biden’s cybersecurity executive order to Gartner including them in its 2022 list of top...

Secure Coding Training

Nov 29, 2022

A Look Ahead: Secure Coding Training in 2023

In the current economic climate, organizations are under increasing pressure to bring new products and services to market faster than ever. As a result, the security of those applications remains an afterthought.

Application Security Security Journey News

Nov 23, 2022

[Reversing Labs] GitHub Repojacking Attack: 10 Lessons for Software Teams

This article was written by John P. Mello Jr. for Reversing Labs. Software supply chain attacks are on the rise because of their reach. Here are 10 valuable lessons from the recent GitHub namespace attack.

Security Journey Blog

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Developer-Tailored Secure Code Training: A New Approach from Security Journey

New Content for Your Most Pressing & Emerging Vulnerabilities: AI/LLM & CWE Top 25

[Help Net Security] Trained Developers Get Rid Of More Vulnerabilities Than Code Scanning Tools

[VMblog.com] Security Journey 2023 Predictions: A Greater Focus on Application Security

Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?

How to Measure the ROI of Application Security Training

Adopting Long Lasting AppSec Habits For 2023

[datanami] Feds Boost Cyber Spending as Security Threats to Data Proliferate

Learning Science Principles in AppSec Education: Your Key to Success

[Security Journal Americas] A Look at AppSec Education for 2023

[Security Boulevard] Moving Beyond Security Awareness to Security Education

Are You Prepared for the Non-Malicious Insider Threat?

A Look Ahead: Secure Coding Training in 2023

[Reversing Labs] GitHub Repojacking Attack: 10 Lessons for Software Teams

Contact Us

Contact Us

Contact Us