23 November 2020

Learn how to assess your security threats for both impact, and cost to mitigate.

03 November 2020

Incentivising developers to know the importance of security is all very well, but faced with normal life people forget quite quickly. So make sure you have a trickle of regular events and nudges to continuously remind the team.

12 October 2020

A great way to spot security problems is to have another developer or security expert review the code. Do it if you can.

28 September 2020

These days security experts need to be very persuasive. Here's why.

24 August 2020

Programmers use lots of components – chunks of software written by other people. These components frequently have security issues. So make sure you choose secure components, and keep all your components are up to date.

10 August 2020

Find out as a team what the threats really are for your project.

27 July 2020

There’s a widely used, approach to using external people to improve your software security. It’s called ‘Penetration Testing’. Discover how it works...

23 June 2020

Learn how to persuade your developers to take security seriously.

20 April 2020

Remote working used to be the exception rather than the rule. But now like it or not everyone is working from home. We all have to make the effort of learning to use video conferencing and sharing technology effectively. And that opens up wonderful opportunities.

08 December 2019

Why should we do games and workshops rather than just telling developers what to do or teaching them ‘capture the flag’ skills? To answer that, consider that for many years, software security has naturally been dominated by ‘security experts’, specialists whose job is to seek out vulnerabilities in software and encourage developers to fix them. Such experts will tend to regard developers as lazy, since they are the ‘cause’ of the security vulnerabilities. So security experts will...