Building an Effective AppSec Education Program: A Step-by-Step Guide
As you build your application security program, you’ll be able to cater to your organization’s needs; even so, you can follow these five steps.
Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance
Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.
Read More
What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements
The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.
Read More
Learn About ‘Application Security (4)’
What You Need to Know About Security Journey’s Recommended Learning Paths
The increasing number of cyber-attacks has made it imperative for organizations to ensure that their software is secure. The first step towards securing software is to provide good training.
The Value of Security Education for Developers
You may be familiar with today's application security dilemma, a multi-pronged problem that most people face.
4 Examples of Security Champion Activities
This article will review four activities for security champions to complete within their organization.
What are the 3 Pillars of Application Security?
In order to protect your organization's applications from attack, it is essential to have a strong foundation in the three pillars of application security: process, technology, and people.
Embedded Software Security for Medical Devices
As medical technology advances, medical devices become increasingly complex and often rely on embedded software to function.
Managing Human Risk For Safer Applications
An organization can instill as many safeguards and protocols as they want. However, there is still a variable that is hard to account for when it comes to application security – humans.
Feeling Exhausted? The AppSec Dilemma Could Be to Blame
From the growing number of vulnerabilities to the increasing pressure to release apps quicker, security and development teams must join forces to create secure applications.
Bridging the Security and Development Divide
It's time to bridge the divide between security and development teams to create a more productive software development lifecycle.
Patch Tuesday: March 2023
Following March’s Patch Tuesday updates, it’s important that we don’t forget equally critical patches released earlier in the month.
What is Application Security Training?
Does your organization have application security training? Considering that 95% of data breaches last year were on web apps, now may be the time to invest in comprehensive training that can be applied to everyone within your SDLC.