Transcript
Hi, Mike Matchett with Small World Big Data and we're here at RSAC 2025 looking at cybersecurity companies all across the landscape. We're talking to Security Journey right now. Who's got an innovative way to teach security, educate, do security education with people who develop applications? Michael Birch welcome. Awesome. Thank you. Yeah. You can hold this if you want. I can hand. It to you. There you go. Awesome. Perfect. Yeah. Um, yeah. So we do application security training. We teach secure coding and security development design. Very gamified, hands on approach. Something to really keep people engaged because I think that's the biggest part we have with training is keeping people engaged and actually caring about the training. So they walk away like they feel like they learned something. So do you think that that's really a big problem with most people's security regimes and one of their bigger vulnerabilities, people not knowing what to do when they're writing code or not knowing how to approach security. Yeah. I think one of the biggest things, the biggest part is awareness, right? It's understanding what the right answer is. And it comes from the fact that security isn't really a requirement. When we think about teaching development or DevSecOps or any of those other things, what happens is in the universities, it might be an elective that someone might pick up when they're graduating. So when they get to their companies, they know how to produce code. But security is not in any part of their education. Right. Tell me a little bit then about security journeys. You sort of unique value proposition. What do you tell people just to get their attention about how you guys approach security training? We approach it from a very developer first mentality, right. There's a lot of companies out there that I think they're really focused on the program. We're thinking about the end learner every time along the way. We want to make sure that you feel rewarded, engaged. You're having fun and you're getting value. So we're giving you the most appropriate training for your business role. Like a one time test you take online. This is something that you engage with on an ongoing basis with the app. And it really ties into our name. It's a journey for us. It's a nonstop journey where you're going to start at this foundational level, and we're going to build you up over the years continuously enhancing your security knowledge. If you look out at the crowd here so far, and I know we're early in RSAC, what would you say is the biggest thing you'd like to tell everyone that's walking by? One of the biggest things I would like to say is, um, understanding that security is a fundamental thing and the decisions that most people are making. I'm going to bring the AI part in here because that's one of the hottest. You have to say it. You got to say the AI, because I got to say almost every booth, that's one thing they found is a way to put AI sticker on their booth. Right. And the big important part to that is my big word of caution. There is a AI is amazing. It can do some great stuff, but it doubles, triples, quadruples your threat landscape. If you don't know what you're doing with appropriately and not all problems need an AI solution. So choose AI when you need it. And when you make that decision, understand the impact it's going to have in your organization. Just to close up that, so do you have some AI relevant security training in your materials? We have a deep dive. We have a bunch of sandbox stuff where you actually interact with real AI systems, and we teach you how to do it. All right. Thank you so much, Michael, I appreciate it. If you're here at the show, check out our check out Security journey. If not, look for you guys online soon. You got a website? Yes we do. Security journey.com. Take care folks.
