Blog Archives

Avoiding a Checklist Approach to PCI Compliance Training

March 9, 2022

| Blog

It is easy to be skeptical about PCI Compliance and the requirement to deploy Training to satisfy a checklist item. This idea that a checklist approach […]

Read More →

The Cultural Challenges of Application Security

| No Comments

| Blog

By Nima Dezhkam and Rohit Sethi Steve, the application security expert, walks into a room of his company’s senior developers. He projects a carefully prepared […]

Read More →

5 Key Design Decisions That Affect Security in Web Applications

| No Comments

| Blog

Senior developers and architects often make decisions related to application performance or other areas that have significant ramifications on the security of the application for […]

Read More →

Practical Tips for Wireless Security Assessments in Corporate Environments

| No Comments

| Blog

When a wireless security assessment is performed, its goals typically include 1) identifying anomalies in the security configuration of the target organization’s wireless infrastructure, and […]

Read More →

Three Steps to Effective Security Training For Your Organization

February 14, 2022

| No Comments

| Application Security Training, Blog, Training

Regulations and Standards Demand Robust Training When we talk about security training, we tend to think of regulations and compliance. In other words, we have […]

Read More →

Expert Advice on How to Attain Authority to Operate (ATO) Faster

| No Comments

| Authority to Operate, Blog, Government

The software development and IT organizations within U.S. federal government agencies face conflicting challenges. They must defend systems against constant attacks by criminals, hacktivists, and […]

Read More →

How to Avoid the OWASP Top 10 List of Software Vulnerabilities and Risks

February 7, 2022

| No Comments

| Blog

The Open Web Application Security Project (OWASP) is a non-profit organization that works to improve the security of software applications with tools and resources, education, […]

Read More →

How to Automate Threat Modeling to Save Time and Money, and Mitigate Risk

February 3, 2022

| No Comments

| Blog

Automate Threat Modeling to Mitigate Cyber Risks at Scale Cyberattacks on organizations continue to increase. According to Accenture’s State of Cybersecurity Resilience 2021 Report, the average […]

Read More →

How To Breathe New Life into Your Security Training Program with Games

January 28, 2022

| No Comments

| Application Security Training, Blog, Training

Understanding Gamification Gamification is one of the most effective ways to engage and motivate learners. It allows learners to engage with training material through techniques […]

Read More →

Security Compass Releases Research Report: 2021 Year in Review

January 24, 2022

| No Comments

| Blog

Security Compass is pleased to share our latest research report, 2021 Year in Review. The report compiles the results of four primary research studies, commissioned by […]

Read More →

SD ELEMENTS

SD BLUEPRINT

APPLICATION SECURITY TRAINING

Security by Design

Learn More >

USE CASES

INDUSTRIES

Product Tours

View Tours >

Featured Article

Read Now >

How We Compare

Compare Now >

Support

Get Support >

COMPANY

Partner Portal

Explore Now >

Customers

Learn More >

Equilibrium

Watch Now >

Category: Blog

Avoiding a Checklist Approach to PCI Compliance Training

The Cultural Challenges of Application Security

5 Key Design Decisions That Affect Security in Web Applications

Practical Tips for Wireless Security Assessments in Corporate Environments

Three Steps to Effective Security Training For Your Organization

Expert Advice on How to Attain Authority to Operate (ATO) Faster

How to Avoid the OWASP Top 10 List of Software Vulnerabilities and Risks

How to Automate Threat Modeling to Save Time and Money, and Mitigate Risk

How To Breathe New Life into Your Security Training Program with Games

Security Compass Releases Research Report: 2021 Year in Review

Topics