The Magic of Developer Empathy: A Thoughtful Conversation About Product Security
Reflections on my recent Security Champions Podcast episode with Jacob Salassi
Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
New Content for Your Most Pressing & Emerging Vulnerabilities: AI/LLM & CWE Top 25
At Security Journey, we continuously evolve our training content to help organizations stay ahead of the most pressing...
5 Types of Data You Should NEVER Share with AI
Large language models (LLMs) like ChatGPT are powerful tools, but it's crucial to remember that data privacy is paramount.
Read More
Take DevSecOps Training to the Next Level with Applied Cryptography
Cryptography is the cornerstone of security. It guarantees that our data remains our data, but one mistake, one small crack, is all it takes for an attacker to breach your system. At Security...
AI in Software Development: How Talent, Culture, & Governance Can Close the Security Gap in AI
Cultivating talent at an individual level, fostering a strong culture at a team level, and strengthening governance at the organizational level. To remain secure in today’s AI-driven software...
Unlock Personalized Secure Code Training with Recommended Assignments
At Security Journey, we believe that secure code training shouldn't be one-size-fits-all. It should be relevant, precise, and built around each developer’s real skills. That’s why we’re excited to...
Closing the Security Gap in AI
This article ORIGINALLY APPEARED on DEVOPSDIGEST.COM
To examine the growing gap between how software is built and how secure it is, Security Journey brought together a panel of seasoned developers,...
CWE Top 25: What the ‘On the Cusp’ Weaknesses Tell Us About Emerging Threats
Most developers are familiar with the CWE Top 25, the annual list of the most dangerous software weaknesses. But fewer know about the lesser-publicized lists that accompany it, which reveal what’s...
What Is a Virtual Machine and How Do You Use Them?
At Security Journey, we strive to create lessons that are compelling, engaging, and informative. Unlike other secure coding training providers that rely on simulations for hands-on lessons, we take a...
How AI/LLMs Can Help, Hinder Developers
THIS ARTICLE WAS WRITTEN BY Michael Burch FOR cacm.acm.org.
The future of software development lies in striking a balance between the unique strengths of AI and human developers.
OWASP Top 10 Proactive Controls
Instead of chasing threats, it pays to be proactive. OWASP noticed the increase in technology's complexity and interconnectivity and recognized that it would become more difficult to secure our...
From Soft Skills to Hard Data: Measuring Success of Security Champions and Culture Change
The Application Security Endgame
For software-centered businesses, Application Security (AppSec) is one of the most critical enablers of cybersecurity’s broader mission. It addresses risk at the...