Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance
What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements
Learn About ‘Application Security (5)’
[DEVOPS Digest] Is the Developer the Forgotten Non-Malicious Insider Threat?
International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits
[VMblog.com] Security Journey 2023 Predictions: A Greater Focus on Application Security
Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?
How to Measure the ROI of Application Security Training
Adopting Long Lasting AppSec Habits For 2023
The new year is traditionally a time to make resolutions and form good habits. It’s an opportunity that many of us take in both our professional and personal lives to adopt better practices and...
Are You Prepared for the Non-Malicious Insider Threat?
Software supply chain risks are a highly visible part of the cybersecurity threat landscape. From President Biden’s cybersecurity executive order to Gartner including them in its 2022 list of top...
[Reversing Labs] GitHub Repojacking Attack: 10 Lessons for Software Teams
Filling the Application Security Education Gap
While we’ve seen promising steps in the right direction when it comes to application security, there is still a significant gap in secure coding knowledge across the entire software development...
Learning Swing: Measuring Knowledge Gain in Secure Coding Training Programs
A measurable increase in a learner’s knowledge after completing training is an essential component to any successful education program. Measurable knowledge gain is one way to prove your program’s effectiveness and value.
Beyond Security Awareness: Safer Apps through Education
The past decade has seen security awareness go from a new concept to a security strategy embedded in most organizations. Several regulations recommend security training but do so in very broad terms.