Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Secure Coding Training

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.

Compliance & Regulations

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.

Topics

Application Security

Dec 9, 2022

Are You Prepared for the Non-Malicious Insider Threat?

Software supply chain risks are a highly visible part of the cybersecurity threat landscape. From President Biden’s cybersecurity executive order to Gartner including them in its 2022 list of top...

Secure Coding Training

Nov 29, 2022

A Look Ahead: Secure Coding Training in 2023

In the current economic climate, organizations are under increasing pressure to bring new products and services to market faster than ever. As a result, the security of those applications remains an afterthought.

Application Security Security Journey News

Nov 23, 2022

[Reversing Labs] GitHub Repojacking Attack: 10 Lessons for Software Teams

This article was written by John P. Mello Jr. for Reversing Labs. Software supply chain attacks are on the rise because of their reach. Here are 10 valuable lessons from the recent GitHub namespace attack.

Compliance & Regulations

Nov 21, 2022

Your Guide to Developer Training Requirements in AppSec Compliance

Organizations that develop software know that application security is a top priority. Safeguarding customer data is critical. There are many rules, regulations, and frameworks in place to protect...

Application Security

Nov 3, 2022

Filling the Application Security Education Gap

While we’ve seen promising steps in the right direction when it comes to application security, there is still a significant gap in secure coding knowledge across the entire software development...

Application Security

Nov 2, 2022

Learning Swing: Measuring Knowledge Gain in Secure Coding Training Programs

A measurable increase in a learner’s knowledge after completing training is an essential component to any successful education program. Measurable knowledge gain is one way to prove your program’s effectiveness and value.

Security Culture Security Journey News

Oct 31, 2022

[Dark Reading] Does Security Have to Get Worse Before It Gets Better?

This article was written by Amy Baker for Dark Reading. How to solve the software vulnerability problem across the entire SDLC.

Security Culture Security Journey News

Oct 25, 2022

[Dark Reading] Security Leaders are Calling for Industry to Take Action and Programmatically Improve Secure Coding Education

This article was posted on Dark Reading. Currently, none of the top 50 undergraduate computer science programs in the U.S. require a course in code or application security.

Application Security

Oct 7, 2022

Beyond Security Awareness: Safer Apps through Education

The past decade has seen security awareness go from a new concept to a security strategy embedded in most organizations. Several regulations recommend security training but do so in very broad terms.

Secure Coding Training

Sep 21, 2022

Three New Lessons to Improve Password Security

Keeping user passwords secure should be a top priority for every system administrator. Stolen login credentials are one of the easiest and most common ways for cybercriminals to gain entry to systems...

Compliance & Regulations Security Journey News

Sep 16, 2022

[Security Week] Industry Reactions to Govt Requiring Security Guarantees From Software Vendors

This article was written by Eduard Kovacs for Security Week. The White House has announced new guidance with the aim of ensuring that federal agencies only use secure software.

Secure Coding Training

Sep 15, 2022

Improve Your Rust Code Security Today

Rust is an extremely popular programming language, claiming the title of most loved language for seven years in a row in the annual Stack Overflow Developer Survey.

Security Journey Blog

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

Are You Prepared for the Non-Malicious Insider Threat?

A Look Ahead: Secure Coding Training in 2023

[Reversing Labs] GitHub Repojacking Attack: 10 Lessons for Software Teams

Your Guide to Developer Training Requirements in AppSec Compliance

Filling the Application Security Education Gap

Learning Swing: Measuring Knowledge Gain in Secure Coding Training Programs

[Dark Reading] Does Security Have to Get Worse Before It Gets Better?

[Dark Reading] Security Leaders are Calling for Industry to Take Action and Programmatically Improve Secure Coding Education

Beyond Security Awareness: Safer Apps through Education

Three New Lessons to Improve Password Security

[Security Week] Industry Reactions to Govt Requiring Security Guarantees From Software Vendors

Improve Your Rust Code Security Today

Contact Us

Contact Us

Contact Us