Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Secure Coding Training

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.

Compliance & Regulations

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.

Topics

Learn About ‘Application Security (3)’

Application Security Security Culture

Jan 30, 2024

3 Reasons Why Homegrown Secure Coding Training Falls Short

With the growing need for secure coding practices, many organizations consider homegrown training a cost-effective and tailored solution. However, while it may seem attractive, homegrown training falls short in crucial areas, leaving your organization vulnerable.

Application Security

Jan 26, 2024

4 Reasons to Prioritize Application Security in 2024

As the threat landscape continues to expand, every business is vulnerable to potential attacks. For this reason, companies are investing heavily in security measures to combat attacks and breaches.

Application Security

Jan 24, 2024

Securing the Future: Why Education is Key in Application Security

The International Day of Education celebrated on January 24th, serves as a powerful reminder of the transformative potential of knowledge. Let's focus on a crucial area where education can be a game-changer: application security.

Application Security

Jan 17, 2024

Bad Coding 101: Ensuring Your Website is XSS-Friendly

Follow our whimsical, step-by-step playbook and keep your website gleefully vulnerable for years to come.

Application Security Security Culture

Jan 2, 2024

Why Investing in Secure Coding Training is More Impactful Than Bug Bounty Programs

Bug bounty programs incentivize ethical hackers to identify and report vulnerabilities. However, prioritizing comprehensive developer training may be more impactful for application security in the long run.

Application Security

Dec 19, 2023

Security Champions are Key to Successful Threat Modeling Facilitation

In this article, we’ll dive into how Security Champions can be your company’s most effective threat modeling advocates and facilitators.

Application Security

Dec 14, 2023

5 Tips for Successful Cybersecurity Threat Modeling at Your Organization

With cybersecurity regularly getting the spotlight, focusing on securing our systems and data has become essential. One of the most efficient ways to start this is with threat modeling. This...

Application Security

Dec 12, 2023

How To Use Threat Modeling to Minimize the Attack Surface of Your Application

As the application security community grows, threat modeling tips are shared daily. But let’s go back to the basics – what is threat modeling? And how does it protect your application?

Application Security Security Culture

Dec 7, 2023

Make AppSec Training Accessible for Everyone with WCAG

Corporate training builds a competent workforce. AppSec training for secure software. Prioritize accessibility in training.

Application Security

Dec 5, 2023

Boost Your Security with These 3 Game-Changing Threat Modeling Tools

In this blog post, we will explore three top threat modeling tools: Microsoft Threat Modeling Tool, IriusRisk, and OWASP Threat Dragon.

Application Security OWASP

Dec 1, 2023

Top 10 Biggest Security Threats to Your Products

Mike Burch and his team took the time to evaluate these lists and compile what we believe is a list to rule them all – the biggest threats to our products across the different technologies.

Application Security Security Culture

Nov 29, 2023

Practical Threat Model Creation: A Step-by-Step Guide & Free Template

Creating a secure product requires prioritizing safety. This guide provides steps for developing a threat model.

Security Journey Blog

Stay Up-to-Date on all Security Journey news and events.

Featured Articles

Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance

What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements

Learn About ‘Application Security (3)’

3 Reasons Why Homegrown Secure Coding Training Falls Short

4 Reasons to Prioritize Application Security in 2024

Securing the Future: Why Education is Key in Application Security

Bad Coding 101: Ensuring Your Website is XSS-Friendly

Why Investing in Secure Coding Training is More Impactful Than Bug Bounty Programs

Security Champions are Key to Successful Threat Modeling Facilitation

5 Tips for Successful Cybersecurity Threat Modeling at Your Organization

How To Use Threat Modeling to Minimize the Attack Surface of Your Application

Make AppSec Training Accessible for Everyone with WCAG

Boost Your Security with These 3 Game-Changing Threat Modeling Tools

Top 10 Biggest Security Threats to Your Products

Practical Threat Model Creation: A Step-by-Step Guide & Free Template

Contact Us

Contact Us

Contact Us