Monthly Archives: March 2014

Secure Coding for Developers at Kingston MakerSpace, May 5-6

I’m excited to announce that I will be returning to my hometown of Kingston, Ontario to teach a two-day, hands-on Secure Coding course at Kingston MakerSpace, May 5-6, 2014.  This course is geared towards software developers who want to learn the details of common web application attacks and what coding strategies to use to properly defend against them.
This course will cover the OWASP Top 10, testing techniques and tools, and secure coding practices.  In addition, how these web vulnerabilities apply to the Payment Card Industry Data Security Standards (PCI DSS) will be covered.
Full details and registration are available at: Kingston MakerSpace .



Jason Gillam is a Senior Security Consultant with Secure Ideas. If you are in need of a penetration test or other security consulting services you can contact him at jgillam@secureideas.com, on Twitter @JGillam, or visit the Secure Ideas – ProfessionallyEvil site for services provided.

Breaking in to Security

Some of the roles within security are all about breaking in to systems, but what about just breaking into the field?  Jobs in security are popping up all over the place and recruiters are trying desperately to help fill them.  There are many people interested in security, but without previous experience, they often want to… Continue Reading

Is My Application Illegal?

Mobile devices and applications are everywhere.  And we have seen tons of information, guides and what not on how to build successful businesses around the next big mobile application. There is even an article spreading around right now about how somebody learned how to program in 3 days and has released an amazing application. But… Continue Reading

Decoding Security Jargon

If you pick up just about any security textbook it will begin by describing security using terms such as threats, risks, vulnerabilities, exposures, agents, and so on.  These terms are fine for discussions between security professionals who agree on the definitions.  However, I find they are often too technical when striking up a conversation with… Continue Reading