Security Journey Blog

Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.

Stay Up-to-Date on all Security Journey news and events.

Explained: Executive Order on Improving the Nation's Cybersecurity

It's often said that government policies can't keep up with technology. Yet, in a time where technology evolves quickly, cybersecurity is growing in importance to stand up against increasingly...

Secure Coding Training Security Culture

Feb 10, 2023

Best AppSec Education Platform [2023]

If you are building a secure coding training program, working with experts in the field is your key to success. In doing so, you are going to research different secure coding training companies to see which is the best fit for you.

Security Culture Security Journey News

Feb 9, 2023

[Help Net Security] Establishing Secure Habits for Software Development in 2023

This article was written by Amy Baker for Help Net Security. As a new year commences, it’s not unusual for people to take the opportunity to adopt better practices and principles and embrace new ways of thinking in both their personal and professional lives.

Secure Coding Training Research

Feb 8, 2023

How Code Scanning Tools Are Letting You Down

Do you rely on code scanning tools to ensure your code is secure? Or do you combine code scanning tools with code reviews and secure code training? Recent research shows that code scanning tools alone may not be enough to protect against vulnerabilities.

Secure Coding Training Research

Feb 2, 2023

Secure Code Training vs. Code Scanning Tools

According to the EMA research, 69.3% of organizations have SDLCs (Software Development Lifecycle) that miss critical security steps. With a growing number of vulnerabilities, organizations are looking into how they can secure their SDLC.

News and Announcements

Jan 31, 2023

Security Journey Announces Unified Education Platform for Enhanced AppSec Training

The most adopted secure coding training solution helps companies satisfy regulatory requirements such as PCI and supports the White House Executive Order on cybersecurity.

Application Security Security Journey News

Jan 30, 2023

[DEVOPS Digest] Is the Developer the Forgotten Non-Malicious Insider Threat?

This article was written by John Campbell for DEVOPS Digest. Gartner named software supply chain attacks the second biggest threat for 2022 and predicted that 45% of organizations will have experienced one or more software supply chain attacks by 2025.

Application Security Security Culture

Jan 24, 2023

International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits

Jan 24^th has been proclaimed by the United Nations Generation Assembly as the International Day of Education, seeking to raise awareness about the need to invest in people and the importance of education.

Secure Coding Training Security Journey News

Jan 23, 2023

[Help Net Security] Trained Developers Get Rid Of More Vulnerabilities Than Code Scanning Tools

This article was originally written for Help Net Security. Researchers also found that as many as 70% of organizations are missing critical security steps in their software development lifecycle (SDLC), highlighting a struggle with a ‘shift-left’ approach.

Application Security Security Journey News

Jan 20, 2023

[VMblog.com] Security Journey 2023 Predictions: A Greater Focus on Application Security

This article was originally written by Amy Baker for VMblog.com. Given the incredibly competitive and challenging economic environment, we are seeing a continuous investment across organizations into application development in the race to win market share.

Application Security Research

Jan 19, 2023

Is Secure Coding Training a Better Investment Than Code Scanning Tools for Reducing Application Vulnerabilities?

A new secure coding practices study, released by EMA, reveals the implementation of ‘shift-left’ is slow, with only 25% of organizations adopting a ‘shift-left’ strategy for security.

Application Security

Jan 12, 2023

How to Measure the ROI of Application Security Training

We are currently in an application security dilemma that stems from growing security concerns, pressure on development teams, and a lack of structured security training.