Developer Security Essentials


Workshops you can deliver yourself, for free,

to help developers and product owners make the right security decisions.

Development teams and product owners have many decisions to make about what security and privacy they need in their products and services. So far, security training has paid little attention to this.


We offer Developer Security Essentials for use by software consultants and leaders. It’s a revolutionary education package, proved in a dozen organisations, to help everyone in software development make good security decisions.


What are Developer Security Essentials?

 Developer Security Essentials are a package of three workshops taking less than a day. Rather than sitting through classroom-style teaching, participants learn for themselves, by playing a game and then discussing their own projects.


In the workshops, development teams first learn for themselves that good security is about the decisions they make. Next they apply that understanding to their own projects to find out what the security and privacy needs might be. Finally they relate those needs to the organisation's business goals, to discuss with product management and customers.


Full leader instructions and materials are available for free, supporting both online and face-to-face events.  And you can measure the benefits of the workshops using our free security assessment.


Why should I use Developer Security Essentials?

If you are a consultant:         


Developer Security Essentials gives you a ‘security story’ – a means to start your client development team on their journey towards well-thought-out security and privacy in their software.   Every project’s security needs are different, so security provides a rich area for you to contribute as a consultant. Plus they'll love you for running an enjoyable workshop!


If you are in a development team:


A well-facilitated Developer Security Essentials session is fun, effective, educational and game-changing. Programmers, QA, managers, product owners, usability experts and every other  development role can take part. The sessions offer a practical and positive approach to security and privacy; indeed developers at a workshop at ACCU 2021 gave us unanimous 'excellent' scores! And most importantly, you and your team will have fun and learn a lot. 


If you are a product owner:


Customers and management are now beginning to demand Security and Privacy as part of the software. But what should you build? This workshop establishes a way of talking with the technical teams to make good, business-focussed, decisions about software security and privacy. Dozens of product owners have already benefitted from Developer Security Essentials; you can too!

How do I lead a Developer Security Essentials session?

The materials for both the face-to-face workshops and the online workshops are free to download:

And you can learn all about Developer Security Essentials, taking part in an abbreviated set of workshops and learning how to run them yourself, in our inexpensive  Train-the-trainer events: