What’s new at Secure Code Warrior: multi-company tournaments, SCIM, program workflows, and more!
Here at Secure Code Warrior, we’re constantly innovating to help equip developers and organizations with the right skills to tackle today’s ever-changing security challenges. We do this through our agile learning platform for secure coding that allows developers to learn how they want, with the most complete and reliable vulnerability content in the industry today.
This past quarter, Secure Code Warrior has implemented new ways for company admins to expand tournaments to multiple brands and entities, in addition to managing their users through SCIM provisioning more simply. We are also thrilled to announce that new coding guidelines are available in Jira, as well as performance overview reporting and new program workflows available in preview.
Let’s dive in to learn more!
Expanding the SCW platform’s breadth and depth
Secure Code Warrior’s continued expansion into new content helps to keep our modules relevant, timely, and tailored to what you need to know in today’s cyber-security landscape. With industry-leading breadth and depth of over 60 languages, it’s easy to build and scale an agile learning program for developers in a large number of languages and frameworks.
Now available: Coding Guidelines in Jira
The addition of Guidelines to our Jira integration offers developers contextual learning that covers security mitigation. Guidelines are more in-depth than videos, focus on a specific language or framework, and offer code snippets to help developers solve an issue even faster. In addition to accessing videos and challenges, now developers can read coding guidelines directly in a Jira issue to access in-depth remediation advice.
Now available: New front-end developer content
Front-end developers need secure code enablement, too! That’s why we have released additional front-end vulnerabilities in Missions and Walkthroughs. Front-end developers will also be able to access front-end specific Missions through Courses.
These updates strive for comprehensive coverage of frontend-specific vulnerabilities - from common ones like DOM-based XSS, to less frequently encountered vulnerabilities such as CSS Injection. Step-by-step Walkthroughs provide front-end developers with trusted guidance on how vulnerabilities are being exploited, while more advanced developers can also test their skills in front-end Missions in Tournaments.
Exciting new ways to scale your culture of security
Now available: Multi-company Tournaments
Multi-company Tournaments can be created to enable friendly competition between developers from multiple business entities, company subsidiaries, partners, and other companies. This ensures that a secure coding culture can scale across an entire organization and its multiple brands.
Interested in participating in the ultimate Multi-company Tournament? Register for the 3rd annual Devlympics - SCW’s global tournament for Cybersecurity Awareness month! If you are already a customer, you can register through the platform.
Simplifying the admin and developer experience
Now available: Course filtering
The ability to apply additional filters on the Course Management page makes it much simpler for admins to filter down to the course they want to work on. Courses can be filtered by several attributes such as status, end date, and teams enrolled.
Now available: Manage your SCW licenses with SCIM
Now program owners and company admins can programmatically manage developers at scale and enjoy the certainty of knowing that access controls are always up to date.
SCIM provisioning uses your identity provider to synchronize access to Secure Code Warrior. Automating these tasks ensure accuracy, security, and compliance to save both time and resources when provisioning users. Currently, SCW supports SCIM provisioning on the user level only and not yet for SCIM groups.
Available in preview: Program workflows
Configuring a scalable and engaging secure code education program is now easier than ever with key usability improvements to the platform. Programs were created to provide more guidance for learners through the sequencing of courses and assessments into multi-level programs. Automated program workflows are now available to customers who have enabled preview in the platform. Program workflows ensure that developers know where to start, can navigate to what is next, and move easily through different levels in a secure code learning program. It also enables company admins to spend less time setting up, managing their program, and nudging developers to complete their next learning activity.
Need some tips about how to kickstart secure code learning at your organization? Read our handbook about how to structure your program to meet your security goals.
Reporting and program insights
Available in preview: Performance Overview
As a company admin, the need to monitor activity across your organization is crucial to understanding developer participation and measuring the success of your secure code learning program. We’ve built an enhanced reporting interface that ensures company admins are gleaning the most actionable insights from their reports.
Performance Overview provides insight into developer course and assessment completion, along with the average accuracy over time. The report also generates an insightful industry benchmark to see how your program compares to your industry’s average assessment score for your selected assessment.
This simple, and yet powerful report marks the beginning of Secure Code Warrior’s set of insights and metrics that are planned for 2024.
Interested in trying out Secure Code Warrior but don’t have an account yet? Book a demo to learn more today.
That’s a wrap on this quarter’s new capabilities! Follow Secure Code Warrior on LinkedIn and X (formerly Twitter) to get updates about the latest releases and improvements.
New at Secure Code Warrior: set up tournaments for multiple companies, new coding guidelines, SCIM provisioning for users, and more!
Secure Code Warrior is here for your organization to help you secure code across the entire software development lifecycle and create a culture in which cybersecurity is top of mind. Whether you’re an AppSec Manager, Developer, CISO, or anyone involved in security, we can help your organization reduce risks associated with insecure code.
Book a demo
Here at Secure Code Warrior, we’re constantly innovating to help equip developers and organizations with the right skills to tackle today’s ever-changing security challenges. We do this through our agile learning platform for secure coding that allows developers to learn how they want, with the most complete and reliable vulnerability content in the industry today.
This past quarter, Secure Code Warrior has implemented new ways for company admins to expand tournaments to multiple brands and entities, in addition to managing their users through SCIM provisioning more simply. We are also thrilled to announce that new coding guidelines are available in Jira, as well as performance overview reporting and new program workflows available in preview.
Let’s dive in to learn more!
Expanding the SCW platform’s breadth and depth
Secure Code Warrior’s continued expansion into new content helps to keep our modules relevant, timely, and tailored to what you need to know in today’s cyber-security landscape. With industry-leading breadth and depth of over 60 languages, it’s easy to build and scale an agile learning program for developers in a large number of languages and frameworks.
Now available: Coding Guidelines in Jira
The addition of Guidelines to our Jira integration offers developers contextual learning that covers security mitigation. Guidelines are more in-depth than videos, focus on a specific language or framework, and offer code snippets to help developers solve an issue even faster. In addition to accessing videos and challenges, now developers can read coding guidelines directly in a Jira issue to access in-depth remediation advice.
Now available: New front-end developer content
Front-end developers need secure code enablement, too! That’s why we have released additional front-end vulnerabilities in Missions and Walkthroughs. Front-end developers will also be able to access front-end specific Missions through Courses.
These updates strive for comprehensive coverage of frontend-specific vulnerabilities - from common ones like DOM-based XSS, to less frequently encountered vulnerabilities such as CSS Injection. Step-by-step Walkthroughs provide front-end developers with trusted guidance on how vulnerabilities are being exploited, while more advanced developers can also test their skills in front-end Missions in Tournaments.
Exciting new ways to scale your culture of security
Now available: Multi-company Tournaments
Multi-company Tournaments can be created to enable friendly competition between developers from multiple business entities, company subsidiaries, partners, and other companies. This ensures that a secure coding culture can scale across an entire organization and its multiple brands.
Interested in participating in the ultimate Multi-company Tournament? Register for the 3rd annual Devlympics - SCW’s global tournament for Cybersecurity Awareness month! If you are already a customer, you can register through the platform.
Simplifying the admin and developer experience
Now available: Course filtering
The ability to apply additional filters on the Course Management page makes it much simpler for admins to filter down to the course they want to work on. Courses can be filtered by several attributes such as status, end date, and teams enrolled.
Now available: Manage your SCW licenses with SCIM
Now program owners and company admins can programmatically manage developers at scale and enjoy the certainty of knowing that access controls are always up to date.
SCIM provisioning uses your identity provider to synchronize access to Secure Code Warrior. Automating these tasks ensure accuracy, security, and compliance to save both time and resources when provisioning users. Currently, SCW supports SCIM provisioning on the user level only and not yet for SCIM groups.
Available in preview: Program workflows
Configuring a scalable and engaging secure code education program is now easier than ever with key usability improvements to the platform. Programs were created to provide more guidance for learners through the sequencing of courses and assessments into multi-level programs. Automated program workflows are now available to customers who have enabled preview in the platform. Program workflows ensure that developers know where to start, can navigate to what is next, and move easily through different levels in a secure code learning program. It also enables company admins to spend less time setting up, managing their program, and nudging developers to complete their next learning activity.
Need some tips about how to kickstart secure code learning at your organization? Read our handbook about how to structure your program to meet your security goals.
Reporting and program insights
Available in preview: Performance Overview
As a company admin, the need to monitor activity across your organization is crucial to understanding developer participation and measuring the success of your secure code learning program. We’ve built an enhanced reporting interface that ensures company admins are gleaning the most actionable insights from their reports.
Performance Overview provides insight into developer course and assessment completion, along with the average accuracy over time. The report also generates an insightful industry benchmark to see how your program compares to your industry’s average assessment score for your selected assessment.
This simple, and yet powerful report marks the beginning of Secure Code Warrior’s set of insights and metrics that are planned for 2024.
Interested in trying out Secure Code Warrior but don’t have an account yet? Book a demo to learn more today.
That’s a wrap on this quarter’s new capabilities! Follow Secure Code Warrior on LinkedIn and X (formerly Twitter) to get updates about the latest releases and improvements.
Here at Secure Code Warrior, we’re constantly innovating to help equip developers and organizations with the right skills to tackle today’s ever-changing security challenges. We do this through our agile learning platform for secure coding that allows developers to learn how they want, with the most complete and reliable vulnerability content in the industry today.
This past quarter, Secure Code Warrior has implemented new ways for company admins to expand tournaments to multiple brands and entities, in addition to managing their users through SCIM provisioning more simply. We are also thrilled to announce that new coding guidelines are available in Jira, as well as performance overview reporting and new program workflows available in preview.
Let’s dive in to learn more!
Expanding the SCW platform’s breadth and depth
Secure Code Warrior’s continued expansion into new content helps to keep our modules relevant, timely, and tailored to what you need to know in today’s cyber-security landscape. With industry-leading breadth and depth of over 60 languages, it’s easy to build and scale an agile learning program for developers in a large number of languages and frameworks.
Now available: Coding Guidelines in Jira
The addition of Guidelines to our Jira integration offers developers contextual learning that covers security mitigation. Guidelines are more in-depth than videos, focus on a specific language or framework, and offer code snippets to help developers solve an issue even faster. In addition to accessing videos and challenges, now developers can read coding guidelines directly in a Jira issue to access in-depth remediation advice.
Now available: New front-end developer content
Front-end developers need secure code enablement, too! That’s why we have released additional front-end vulnerabilities in Missions and Walkthroughs. Front-end developers will also be able to access front-end specific Missions through Courses.
These updates strive for comprehensive coverage of frontend-specific vulnerabilities - from common ones like DOM-based XSS, to less frequently encountered vulnerabilities such as CSS Injection. Step-by-step Walkthroughs provide front-end developers with trusted guidance on how vulnerabilities are being exploited, while more advanced developers can also test their skills in front-end Missions in Tournaments.
Exciting new ways to scale your culture of security
Now available: Multi-company Tournaments
Multi-company Tournaments can be created to enable friendly competition between developers from multiple business entities, company subsidiaries, partners, and other companies. This ensures that a secure coding culture can scale across an entire organization and its multiple brands.
Interested in participating in the ultimate Multi-company Tournament? Register for the 3rd annual Devlympics - SCW’s global tournament for Cybersecurity Awareness month! If you are already a customer, you can register through the platform.
Simplifying the admin and developer experience
Now available: Course filtering
The ability to apply additional filters on the Course Management page makes it much simpler for admins to filter down to the course they want to work on. Courses can be filtered by several attributes such as status, end date, and teams enrolled.
Now available: Manage your SCW licenses with SCIM
Now program owners and company admins can programmatically manage developers at scale and enjoy the certainty of knowing that access controls are always up to date.
SCIM provisioning uses your identity provider to synchronize access to Secure Code Warrior. Automating these tasks ensure accuracy, security, and compliance to save both time and resources when provisioning users. Currently, SCW supports SCIM provisioning on the user level only and not yet for SCIM groups.
Available in preview: Program workflows
Configuring a scalable and engaging secure code education program is now easier than ever with key usability improvements to the platform. Programs were created to provide more guidance for learners through the sequencing of courses and assessments into multi-level programs. Automated program workflows are now available to customers who have enabled preview in the platform. Program workflows ensure that developers know where to start, can navigate to what is next, and move easily through different levels in a secure code learning program. It also enables company admins to spend less time setting up, managing their program, and nudging developers to complete their next learning activity.
Need some tips about how to kickstart secure code learning at your organization? Read our handbook about how to structure your program to meet your security goals.
Reporting and program insights
Available in preview: Performance Overview
As a company admin, the need to monitor activity across your organization is crucial to understanding developer participation and measuring the success of your secure code learning program. We’ve built an enhanced reporting interface that ensures company admins are gleaning the most actionable insights from their reports.
Performance Overview provides insight into developer course and assessment completion, along with the average accuracy over time. The report also generates an insightful industry benchmark to see how your program compares to your industry’s average assessment score for your selected assessment.
This simple, and yet powerful report marks the beginning of Secure Code Warrior’s set of insights and metrics that are planned for 2024.
Interested in trying out Secure Code Warrior but don’t have an account yet? Book a demo to learn more today.
That’s a wrap on this quarter’s new capabilities! Follow Secure Code Warrior on LinkedIn and X (formerly Twitter) to get updates about the latest releases and improvements.
Click on the link below and download the PDF of this resource.
Secure Code Warrior is here for your organization to help you secure code across the entire software development lifecycle and create a culture in which cybersecurity is top of mind. Whether you’re an AppSec Manager, Developer, CISO, or anyone involved in security, we can help your organization reduce risks associated with insecure code.
View reportBook a demo
Secure Code Warrior is here for your organization to help you secure code across the entire software development lifecycle and create a culture in which cybersecurity is top of mind. Whether you’re an AppSec Manager, Developer, CISO, or anyone involved in security, we can help your organization reduce risks associated with insecure code.
Book a demoHere at Secure Code Warrior, we’re constantly innovating to help equip developers and organizations with the right skills to tackle today’s ever-changing security challenges. We do this through our agile learning platform for secure coding that allows developers to learn how they want, with the most complete and reliable vulnerability content in the industry today.
This past quarter, Secure Code Warrior has implemented new ways for company admins to expand tournaments to multiple brands and entities, in addition to managing their users through SCIM provisioning more simply. We are also thrilled to announce that new coding guidelines are available in Jira, as well as performance overview reporting and new program workflows available in preview.
Let’s dive in to learn more!
Expanding the SCW platform’s breadth and depth
Secure Code Warrior’s continued expansion into new content helps to keep our modules relevant, timely, and tailored to what you need to know in today’s cyber-security landscape. With industry-leading breadth and depth of over 60 languages, it’s easy to build and scale an agile learning program for developers in a large number of languages and frameworks.
Now available: Coding Guidelines in Jira
The addition of Guidelines to our Jira integration offers developers contextual learning that covers security mitigation. Guidelines are more in-depth than videos, focus on a specific language or framework, and offer code snippets to help developers solve an issue even faster. In addition to accessing videos and challenges, now developers can read coding guidelines directly in a Jira issue to access in-depth remediation advice.
Now available: New front-end developer content
Front-end developers need secure code enablement, too! That’s why we have released additional front-end vulnerabilities in Missions and Walkthroughs. Front-end developers will also be able to access front-end specific Missions through Courses.
These updates strive for comprehensive coverage of frontend-specific vulnerabilities - from common ones like DOM-based XSS, to less frequently encountered vulnerabilities such as CSS Injection. Step-by-step Walkthroughs provide front-end developers with trusted guidance on how vulnerabilities are being exploited, while more advanced developers can also test their skills in front-end Missions in Tournaments.
Exciting new ways to scale your culture of security
Now available: Multi-company Tournaments
Multi-company Tournaments can be created to enable friendly competition between developers from multiple business entities, company subsidiaries, partners, and other companies. This ensures that a secure coding culture can scale across an entire organization and its multiple brands.
Interested in participating in the ultimate Multi-company Tournament? Register for the 3rd annual Devlympics - SCW’s global tournament for Cybersecurity Awareness month! If you are already a customer, you can register through the platform.
Simplifying the admin and developer experience
Now available: Course filtering
The ability to apply additional filters on the Course Management page makes it much simpler for admins to filter down to the course they want to work on. Courses can be filtered by several attributes such as status, end date, and teams enrolled.
Now available: Manage your SCW licenses with SCIM
Now program owners and company admins can programmatically manage developers at scale and enjoy the certainty of knowing that access controls are always up to date.
SCIM provisioning uses your identity provider to synchronize access to Secure Code Warrior. Automating these tasks ensure accuracy, security, and compliance to save both time and resources when provisioning users. Currently, SCW supports SCIM provisioning on the user level only and not yet for SCIM groups.
Available in preview: Program workflows
Configuring a scalable and engaging secure code education program is now easier than ever with key usability improvements to the platform. Programs were created to provide more guidance for learners through the sequencing of courses and assessments into multi-level programs. Automated program workflows are now available to customers who have enabled preview in the platform. Program workflows ensure that developers know where to start, can navigate to what is next, and move easily through different levels in a secure code learning program. It also enables company admins to spend less time setting up, managing their program, and nudging developers to complete their next learning activity.
Need some tips about how to kickstart secure code learning at your organization? Read our handbook about how to structure your program to meet your security goals.
Reporting and program insights
Available in preview: Performance Overview
As a company admin, the need to monitor activity across your organization is crucial to understanding developer participation and measuring the success of your secure code learning program. We’ve built an enhanced reporting interface that ensures company admins are gleaning the most actionable insights from their reports.
Performance Overview provides insight into developer course and assessment completion, along with the average accuracy over time. The report also generates an insightful industry benchmark to see how your program compares to your industry’s average assessment score for your selected assessment.
This simple, and yet powerful report marks the beginning of Secure Code Warrior’s set of insights and metrics that are planned for 2024.
Interested in trying out Secure Code Warrior but don’t have an account yet? Book a demo to learn more today.
That’s a wrap on this quarter’s new capabilities! Follow Secure Code Warrior on LinkedIn and X (formerly Twitter) to get updates about the latest releases and improvements.
Table of contents
Secure Code Warrior is here for your organization to help you secure code across the entire software development lifecycle and create a culture in which cybersecurity is top of mind. Whether you’re an AppSec Manager, Developer, CISO, or anyone involved in security, we can help your organization reduce risks associated with insecure code.
Book a demoDownloadResources to get you started
Benchmarking Security Skills: Streamlining Secure-by-Design in the Enterprise
Finding meaningful data on the success of Secure-by-Design initiatives is notoriously difficult. CISOs are often challenged when attempting to prove the return on investment (ROI) and business value of security program activities at both the people and company levels. Not to mention, it’s particularly difficult for enterprises to gain insights into how their organizations are benchmarked against current industry standards. The President’s National Cybersecurity Strategy challenged stakeholders to “embrace security and resilience by design.” The key to making Secure-by-Design initiatives work is not only giving developers the skills to ensure secure code, but also assuring the regulators that those skills are in place. In this presentation, we share a myriad of qualitative and quantitative data, derived from multiple primary sources, including internal data points collected from over 250,000 developers, data-driven customer insights, and public studies. Leveraging this aggregation of data points, we aim to communicate a vision of the current state of Secure-by-Design initiatives across multiple verticals. The report details why this space is currently underutilized, the significant impact a successful upskilling program can have on cybersecurity risk mitigation, and the potential to eliminate categories of vulnerabilities from a codebase.
Secure code training topics & content
Our industry-leading content is always evolving to fit the ever changing software development landscape with your role in mind. Topics covering everything from AI to XQuery Injection, offered for a variety of roles from Architects and Engineers to Product Managers and QA. Get a sneak peak of what our content catalog has to offer by topic and role.
Quests: Industry leading learning to keep developers ahead of the game mitigating risk.
Quests is a learning platform that helps developers mitigate software security risks by enhancing their secure coding skills. With curated learning paths, hands-on challenges, and interactive activities, it empowers developers to identify and prevent vulnerabilities.
Resources to get you started
Is Vibe Coding Going to Turn Your Codebase Into a Frat Party?
Vibe coding is like a college frat party, and AI is the centerpiece of all the festivities, the keg. It’s a lot of fun to let loose, get creative, and see where your imagination can take you, but after a few keg stands, drinking (or, using AI) in moderation is undoubtedly the safer long-term solution.
The Decade of the Defenders: Secure Code Warrior Turns Ten
Secure Code Warrior's founding team has stayed together, steering the ship through every lesson, triumph, and setback for an entire decade. We’re scaling up and ready to face our next chapter, SCW 2.0, as the leaders in developer risk management.
Developer-driven coding.
Securely.
Contact us today and make software security an intrinsic part of your development process.
