What Is the Best Secure Coding Certification?
The rapid evolution of cyber threats has made secure coding training and expertise non-negotiable for software development teams. Organizations face mounting pressure to demonstrate compliance with...
Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
New Content for Your Most Pressing & Emerging Vulnerabilities: AI/LLM & CWE Top 25
At Security Journey, we continuously evolve our training content to help organizations stay ahead of the most pressing...
5 Types of Data You Should NEVER Share with AI
Large language models (LLMs) like ChatGPT are powerful tools, but it's crucial to remember that data privacy is paramount.
Read More
Aspen: Guardian AI - Turning Scanner Findings Into Smarter AI Code
AI coding assistants like GitHub Copilot, Claude, and Codex are rapidly becoming part of everyday development. They accelerate delivery, reduce toil, and help teams move faster than ever.
What Is the OWASP Top 10? A Guide to the Top Ten Most Common Security Risks in Coding
What Is OWASP?
The Open Worldwide Application Security Project (OWASP) is a non-profit foundation focused on improving the security of software. It’s best known for openly published resources,...
Modern AI Development Requires More Than Better Prompts
AI is no longer an experiment in software development. It’s writing production code. It’s refactoring applications. It’s generating tests, scaffolding architectures, and—depending on the...
Which Programming Language Has the Most Vulnerabilities?
If you're making technology decisions for your organization, understanding which programming language vulnerabilities pose the greatest risk helps you prioritize secure coding training and language...
Is Python Or Java More Secure?
If you're choosing between Python and Java for a security-sensitive project, you might be surprised to learn that neither language is inherently "more secure" than the other. The security of your...
The Security Champions Podcast 2025: A Year-in-Review
Reflections on the latest Security Champions Podcast episode
Prompt Injection 101: Understanding and Preventing Attacks on Large Language Models (LLMs)
Large Language Models (LLMs) are becoming core components in developer workflows, from code generation and testing to documentation, search, and automation. But as organizations integrate AI into...
What Is an Example of Secure Code?
Most developers understand security in theory, but putting that theory into code is where things break down. Real security happens not in policy documents but in the small decisions made while...
Is Python More Secure Than C++? Full Security Comparison
The debate between Python and C++ security isn't about picking a winner. It's about understanding how language design influences the vulnerabilities your team will face. Both languages power critical...
What Are the Key Principles of Secure Coding?
In today’s world of ever-evolving cyber threats, secure coding is the day-to-day discipline that prevents small mistakes from becoming production incidents. Modern teams ship software quickly, but...
Leading with the Carrot: Building Security Culture, Not Just Compliance
Reflections on my Security Champions Podcast episode featuring Mark McMillan