Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

[Dark Reading] Application Security Requires More Investment in Developer Training

This article was originally published in Dark Reading.

Security Culture

Mar 23, 2023

Security Champions, Are We Doing It All Wrong? Part 1

This is part 1 in a 3-part series about Security Champions by Michael Burch, host of The Security Champion Podcast.

Security Culture

Mar 22, 2023

Customizing Your AppSec Learning Themes (with Examples)

Are you looking for ways to elevate your AppSec training? First, it's essential to keep in mind that not all learners are the same, and everyone has different learning needs and preferences – whether on an organizational level, team level, or employee level.

Application Security News and Announcements

Mar 17, 2023

Patch Tuesday: March 2023

Following March’s Patch Tuesday updates, it’s important that we don’t forget equally critical patches released earlier in the month.

Application Security

Mar 16, 2023

What is Application Security Training?

Does your organization have application security training? Considering that 95% of data breaches last year were on web apps, now may be the time to invest in comprehensive training that can be applied to everyone within your SDLC.

Secure Coding Training

Mar 15, 2023

What Is Secure Coding Training?

That's where secure coding training comes in - it is a proactive measure that can help software developers understand and implement security best practices in their code to protect against potential threats.

Compliance & Regulations

Mar 9, 2023

Top 8 PCI DSS Compliance Tips

In today's world, the security of sensitive data has become more critical than ever. PCI DSS standards were created to protect credit cardholders' data from theft and fraud. Any organization that accepts credit card payments must comply with these standards.

Application Security News and Announcements

Mar 7, 2023

What The National Cyber Strategy Means For You [2023]

The new National Cyber Strategy from the Biden administration aims to strengthen the nation's cybersecurity and protect against cyber threats. The strategy emphasizes cybersecurity more, with increased regulation, collaboration, and funding for cybersecurity initiatives.

Research

Mar 2, 2023

Measuring the ROI of AppSec Training [INFOGRAPHIC]

Security Journey provides engaging and effective AppSec training to developers and all members of the SDLC. This infographic breaks down the ROI of AppSec training for an organization with the calculations.

Compliance & Regulations Security Journey News

Mar 2, 2023

[SiliconANGLE] White House Publishes New National Cybersecurity Strategy

This article was written by Maria Deutscher for Silicon ANGLE. The White House has released a national cybersecurity strategy that seeks to make the digital ecosystem more resilient against hacking campaigns.

Security Culture Security Journey News

Mar 1, 2023

[Hackernoon] ChatGPT Will Change Cybersecurity…but How?

This article was written by John Campbell for HackerNoon. ChatGPT, OpenAI's impressive chatbot, has fueled a leap in the global understanding of the potential of artificial intelligence (AI).

OWASP

Feb 28, 2023

How Financial Institutions Can Use The OWASP Security Model

The OWASP Maturity Model helps organizations create their own security roadmap. We'll break down the OWASP Maturity Model and walk through an example of an organization using the model to improve their application security.