Receive awards updates:

Promote this Nomination

Share on FacebookTweet about this on TwitterShare on LinkedIn
scw_white_v

In 3 bullets, summarize why this company is different from the competition and deserves recognition:

• Security begins and ends with the developer. They write the code, and if there are vulnerabilities found during the testing or review phases, they have to fix the code. The Secure Code Warrior platform addresses the root cause of security vulnerabilities in applications by educating developers on how to apply secure coding techniques. We teach developers to not only identify but also remediate vulnerabilities in application code in a gamified manner, which moves away from the traditional in class training and appeals to the gaming mentality of developers by providing a competitive element.

• Designed by professional developers and IT security experts, our learning activities align with industry standards, including the OWASP Top 10 Application Security Weaknesses. Developers can apply or improve their secure coding skills by playing in the language framework(s) they’re familiar with.

• Secure Code Warrior are not coming up with high-tech artificial intelligence rocket science or with the latest end-points pro-active immunisation techniques to stop malware. No, Secure Code Warrior tries to address a worldwide gap in our education systems around secure coding. It is not acceptable that multiple companies get hacked by SQL injections in 2016 while this software weakness (and its solutions) have been known since 1998. Secure Code Warrior have teamed up with universities in Australia (at no cost) to help to educate software engineering students in secure coding techniques before they go out into the corporate world and are tasked with building real world applications. They want to be able to do this for every university worldwide and help every commercial enterprise to avoid costly mistakes.

In less than 300 words, summarize the achievements of the company in the nominated category

Secure Code Warrior was born when a small group of cyber security professionals built a company around the idea that a new approach was needed in software development cyber security. The team have seen the cost associated with fixing vulnerable code first hand, making them passionate about equipping developers with the skills necessary to prevent software security flaws from being introduced in the first place.

In about 9 months, Secure Code Warrior has developed a new and innovative web-based corporate education platform where software developers use hands-on learning to build their secure-coding skills. Developers build vulnerability pattern recognition memory by working on sequentially more difficult challenges containing code with real vulnerabilities. Building this security muscle memory means that they’re better equipped to recognise vulnerability patterns in real work projects.

The gamified nature of the platform provides benchmarking through a challenge environment to keep developers engaged – using Leader Boards and a Developer Maturity Model. We’ve seen that many developers actually continue the training on their own time just to prove they’re the best. We have built in a total of an impressive 2000 challenges in 8 different application frameworks (JAVA Spring, JAVA Struts, JAVA JSP/J2EE, C# .NET WebForms, Ruby on Rails, Android JAVA, Objective c).

From a business perspective, executives are able to see the learning progress of their development team(s) including their secure code strength and weakness areas, but also allowing them to evaluate offshored and external development teams. For the first time there is a live data-driven evaluation of an individual developer’s true secure code writing ability. Several financial institutions in Europe and Australia have (early) adopted this platform to ensure their external suppliers have a minimum baseline in secure coding and to better enable developers to review and fix their own code before submitting.

17 Responses to “Secure Code Warrior”

  1. Abhishek on February 11, 2016

    Best platform to learn about vulnerabilities and its solutions for any platform.

  2. Viswanath Chirravuri on February 11, 2016

    One of the best training platform I have ever seen. Thanks to SCW.

  3. Matthew on February 11, 2016

    Great challenges, great price, great support

  4. John Fitz on February 11, 2016

    Super platform for upskilling your devs in secure coding.

  5. Very good training platform for learning about vulnerabilities and solutions. Has fantastic potential specially for banking sector clients as well as many others.

  6. JK Dua on February 11, 2016

    Sir ji, what an idea!

  7. Rohan S on February 12, 2016

    A great platform preparing developers to counter cyber attacks – thereby addressing vulnerabilities at a common root cause. Being a scalable/accessable/economical offering it will hopefully address a huge gap in a potentualy global market.

  8. Sandeep Godbole on February 12, 2016

    This, probably is the only solution in the world that addresses the much needed education towards building secure software!

  9. Dorien on February 12, 2016

    Good job guys!!!

  10. yvette tijssens on February 13, 2016

    fantastic, good platform for training tot learn about vulner

  11. yvette tijssens on February 13, 2016

    fantastic good platform to learn about vulnerabilities and solutions

  12. yvette tijssens on February 13, 2016

    great to counter cyber attacs

  13. Great platform!
    Starting at the source. Best approach.

  14. Great!!!

  15. Wim Bartsoen on February 14, 2016

    ADKAR at work. Great solution for a difficult endemic problem.

  16. neuronurse on February 16, 2016

    well done !

  17. Adopting a proactive approach by educating developers on the root cause of cyber security attacks is a critical business requirement and addressing it at the source and in the early stages of the system development lifecycle is absolutely crucial in mitigating the risk and the costs of an attack.

Leave a Comment.

You need to be a registered member to comment on this nomination.Please register

Sign Up for
Cybersecurity Excellence Awards Updates

Sign up for your award updates! Join thousands of cybersecurity marketers and professionals to receive the latest news about the upcoming Cybersecurity Excellence Awards.

Sign Up for
Cybersecurity Excellence Awards Updates

Sign up for your award updates! Join thousands of cybersecurity marketers and professionals to receive the latest news about the upcoming Cybersecurity Excellence Awards.