Security Journey Blog

Application Security Security Culture

Mar 24, 2025

How to Evaluate Developer Engagement and Learning in Secure Code Training

Security is a critical aspect of software development, and secure coding practices help mitigate vulnerabilities before they become costly breaches. However, simply implementing a secure code...

Read More - How to Evaluate Developer Engagement and Learning in Secure Code Training

Security Culture AI/LLM

Jan 30, 2025

Navigating the AI Threat Landscape in 2025: Challenges and Strategies

Mike talks to Chris Romeo about the growth of champions programs, the Security Champions Framework, and the mistake that organizations make with their programs. 

Read More - Navigating the AI Threat Landscape in 2025: Challenges and Strategies

Security Culture

Oct 10, 2024

10 Ways Your Organization Can Celebrate Cyber Security Awareness Month

Cybersecurity Awareness Month isn't just about checking boxes; it's about building a security-minded culture where everyone plays a part.  

Read More - 10 Ways Your Organization Can Celebrate Cyber Security Awareness Month

Application Security Security Culture AI/LLM

Oct 2, 2024

What Engineering Leaders Need to Know About AI Security

The AI revolution is transforming software development at an unprecedented pace, bringing a new wave of security challenges. As engineering leaders, we're not just building the future; we're securing it.

Read More - What Engineering Leaders Need to Know About AI Security

Application Security Security Culture AI/LLM

Sep 25, 2024

The C-Suite's Guide to AI/LLM Security

C-Suite executives must understand the unique threats posed by AI and LLMs and the potential consequences of security breaches whether your team is building LLMs for AI, or using AI/LLMs tools when coding. 

Read More - The C-Suite's Guide to AI/LLM Security

Secure Coding Training Application Security Security Culture

Mar 28, 2024

Security Journey vs. Secure Code Warrior [2024]

Choosing the right secure coding training solution for your team can be overwhelming. Security Journey can help. In this article, we compare Security Journey and Secure Code Warrior to help you choose the best option for your organization.

Read More - Security Journey vs. Secure Code Warrior [2024]

Application Security Security Culture

Mar 14, 2024

Rewards and Risks of Using AI in Product Security

Security teams are exploring how AI-powered tools can help them address challenges when it comes to secure coding, product security, and even bridging the gap between security and development teams. 

Read More - Rewards and Risks of Using AI in Product Security

Secure Coding Training Security Culture

Feb 27, 2024

Your Guide to Building the Ideal Secure Coding Training Program

We've gathered insights from Security Journey to create a guide for your secure coding training program.

Read More - Your Guide to Building the Ideal Secure Coding Training Program

Security Culture

Feb 20, 2024

Diversity in InfoSec: How Different Perspectives Strengthen Security

Could the next major security breach be prevented by a more diverse InfoSec team? It's a provocative question, yet one worth asking.  

Read More - Diversity in InfoSec: How Different Perspectives Strengthen Security

Secure Coding Training Security Culture

Feb 13, 2024

Just-In-Time vs Proactive Secure Code Training: Which One Should You Choose?

In this article, we’ll break down the differences, advantages, and disadvantages of just-in-time vs proactive secure code training. 

Read More - Just-In-Time vs Proactive Secure Code Training: Which One Should You Choose?

Application Security Security Culture

Jan 30, 2024

3 Reasons Why Homegrown Secure Coding Training Falls Short

With the growing need for secure coding practices, many organizations consider homegrown training a cost-effective and tailored solution. However, while it may seem attractive, homegrown training falls short in crucial areas, leaving your organization vulnerable.

Read More - 3 Reasons Why Homegrown Secure Coding Training Falls Short

Application Security Security Culture

Jan 2, 2024

Why Investing in Secure Coding Training is More Impactful Than Bug Bounty Programs

Bug bounty programs incentivize ethical hackers to identify and report vulnerabilities. However, prioritizing comprehensive developer training may be more impactful for application security in the long run.

Read More - Why Investing in Secure Coding Training is More Impactful Than Bug Bounty Programs