Security Journey Blog

Research

Nov 7, 2024

3 Technologies Revolutionizing Cybersecurity in Finance

According to the Ponemon Institute, the average cost of a data breach in the financial sector is a staggering $5.97 million, emphasizing the critical need for robust cybersecurity measures. 

Read More - 3 Technologies Revolutionizing Cybersecurity in Finance

Secure Coding Training Research

Feb 8, 2024

Secure Coding Training: A Must During The Vulnerability Patching Crisis

The application security industry is currently facing a critical challenge. The rapid increase in vulnerabilities and the struggle for organizations to patch them successfully has led to what is now called ‘The Vulnerability Patching Crisis.’ 

Read More - Secure Coding Training: A Must During The Vulnerability Patching Crisis

Application Security Research

Feb 6, 2024

Is Regulation the Consequence of Complacency in Securing Code?

But why is there a sudden increase in regulations, and what consequences does it have on businesses? The answer lies in the AppSec Dilemma.

Read More - Is Regulation the Consequence of Complacency in Securing Code?

Research Security Culture

Oct 26, 2023

AI AppSec: Can Developers Fight Fire With Fire?

The adoption of AI continues to drive transformation across a number of industries, one of which is software development. 

Read More - AI AppSec: Can Developers Fight Fire With Fire?

Application Security Research Security Culture

Jun 6, 2023

What are the 3 Pillars of Application Security?

In order to protect your organization's applications from attack, it is essential to have a strong foundation in the three pillars of application security: process, technology, and people.  

Read More - What are the 3 Pillars of Application Security?

Research

Mar 2, 2023

Measuring the ROI of AppSec Training [INFOGRAPHIC]

Security Journey provides engaging and effective AppSec training to developers and all members of the SDLC. This infographic breaks down the ROI of AppSec training for an organization with the calculations. 

Read More - Measuring the ROI of AppSec Training [INFOGRAPHIC]

Secure Coding Training Research

Feb 23, 2023

Benefits of Progressive Learning Paths for AppSec Education

Learning is a lifelong journey, no matter your age, and when educational content is built with learning science principles in mind – learning can also be effective.

Read More - Benefits of Progressive Learning Paths for AppSec Education

Secure Coding Training Research

Feb 8, 2023

How Code Scanning Tools Are Letting You Down

Do you rely on code scanning tools to ensure your code is secure? Or do you combine code scanning tools with code reviews and secure code training? Recent research shows that code scanning tools alone may not be enough to protect against vulnerabilities.  

Read More - How Code Scanning Tools Are Letting You Down

Secure Coding Training Research

Feb 2, 2023

Secure Code Training vs. Code Scanning Tools

According to the EMA research, 69.3% of organizations have SDLCs (Software Development Lifecycle) that miss critical security steps. With a growing number of vulnerabilities, organizations are looking into how they can secure their SDLC.  

Read More - Secure Code Training vs. Code Scanning Tools

Application Security Research

Jan 19, 2023

Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?

A new secure coding practices study, released by EMA, reveals the implementation of ‘shift-left’ is slow, with only 25% of organizations adopting a ‘shift-left’ strategy for security.

Read More - Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?

Application Security Research

Jan 10, 2023

Adopting Long Lasting AppSec Habits For 2023

The new year is traditionally a time to make resolutions and form good habits. It’s an opportunity that many of us take in both our professional and personal lives to adopt better practices and...

Read More - Adopting Long Lasting AppSec Habits For 2023

Research

Aug 16, 2022

The GitHub Supply Chain Threat: What You Need to Know Today

If you’re a GitHub developer that relies on open source repositories in your code (that would be everyone), Tuesday night’s Tweet storm started by Stephen Lacy no doubt caught your attention. 

Read More - The GitHub Supply Chain Threat: What You Need to Know Today