Security Journey Blog

Security Culture

Mar 22, 2023

Customizing Your AppSec Learning Themes (with Examples)

Are you looking for ways to elevate your AppSec training? First, it's essential to keep in mind that not all learners are the same, and everyone has different learning needs and preferences – whether on an organizational level, team level, or employee level. 

Read More - Customizing Your AppSec Learning Themes (with Examples)

Security Culture Security Journey News

Mar 1, 2023

[Hackernoon] ChatGPT Will Change Cybersecurity…but How?

This article was written by John Campbell for HackerNoon. ChatGPT, OpenAI's impressive chatbot, has fueled a leap in the global understanding of the potential of artificial intelligence (AI).

Read More - [Hackernoon] ChatGPT Will Change Cybersecurity…but How?

Secure Coding Training Security Culture

Feb 10, 2023

Best AppSec Education Platform [2023]

If you are building a secure coding training program, working with experts in the field is your key to success. In doing so, you are going to research different secure coding training companies to see which is the best fit for you. 

Read More - Best AppSec Education Platform [2023]

Security Culture Security Journey News

Feb 9, 2023

[Help Net Security] Establishing Secure Habits for Software Development in 2023

This article was written by Amy Baker for Help Net Security. As a new year commences, it’s not unusual for people to take the opportunity to adopt better practices and principles and embrace new ways of thinking in both their personal and professional lives.

Read More - [Help Net Security] Establishing Secure Habits for Software Development in 2023

Application Security Security Culture

Jan 24, 2023

International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits

Jan 24^th has been proclaimed by the United Nations Generation Assembly as the International Day of Education, seeking to raise awareness about the need to invest in people and the importance of education.

Read More - International Day of Education: An Opportunity to Promote Long-Lasting Secure Coding Habits

Security Culture Security Journey News

Dec 22, 2022

[Security Journal Americas] A Look at AppSec Education for 2023

This article was written by Victoria Rees for Security Journal Americas. Amy Baker, Security Education Evangelist, Security Journey discusses the trends and challenges for the software development industry in 2023.

Read More - [Security Journal Americas] A Look at AppSec Education for 2023

Security Culture Security Journey News

Dec 19, 2022

[Security Boulevard] Moving Beyond Security Awareness to Security Education

This article was written by Sue Poremba for Security Boulevard. While security awareness training is helpful to assist employees in recognizing threats, phishing and social engineering attacks are successful enough that it is clear that awareness training alone isn’t enough.

Read More - [Security Boulevard] Moving Beyond Security Awareness to Security Education

Security Culture Security Journey News

Oct 31, 2022

[Dark Reading] Does Security Have to Get Worse Before It Gets Better?

This article was written by Amy Baker for Dark Reading. How to solve the software vulnerability problem across the entire SDLC.

Read More - [Dark Reading] Does Security Have to Get Worse Before It Gets Better?

Security Culture Security Journey News

Oct 25, 2022

[Dark Reading] Security Leaders are Calling for Industry to Take Action and Programmatically Improve Secure Coding Education

This article was posted on Dark Reading. Currently, none of the top 50 undergraduate computer science programs in the U.S. require a course in code or application security.

Read More - [Dark Reading] Security Leaders are Calling for Industry to Take Action and Programmatically Improve Secure Coding Education

Security Culture Security Journey News

Sep 2, 2022

[Dark Reading] Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds

This article was originally posted on Dark Reading. The US government and the Open Source Security Foundation have released guidance to shore up software supply chain security, and now it's up to developers to act.

Read More - [Dark Reading] Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds

Security Culture

Aug 11, 2022

Create a Security-First Mindset Across the Full SDLC Team

When you think about how to reduce application security risks, training your development team on secure coding strategies is the first thing that comes to mind. And for good reason. Security-minded...

Read More - Create a Security-First Mindset Across the Full SDLC Team

Security Culture

Nov 11, 2021

Explain Sigstore to Me Like I'm Five

If you have paid attention to supply chain security in 2021, you've likely heard a lot about Sigstore.  If you are still not sure exactly what it is, do not worry. We will provide an explanation that even a child can follow.

Read More - Explain Sigstore to Me Like I'm Five