Security Leadership

Coaching for Technical Leaders
Technical Security Services
Practical and Measurable

Our Focus

We help organizations building software to do so securely.
Technical

Secure development training, code review, security testing, threat modeling and architecture review are some of the technical solutions we provide to help make your applications more secure.

Process

Security depends on much more than technology. Stakeholders need to be involved and security needs to be reinforced throughout a project. We help our customers to involve their stakeholders and make security requirements explicit.

Coaching

Many leaders are unsure of how to address security within their organizations. We coach leaders to embrace security, build a program and make their decisions and process visible to both their teams and their executives.

Independence

Although we advocate the use of tools as part of any security program, we are proud to bring a nuanced and vendor-neutral perspective to any challenge.

  • CODE REVIEW
  • DEVELOPER TRAINING
  • AGILE SECURITY
  • SECURITY IN THE SDLC
  • STAKEHOLDER ENGAGEMENT
  • PENETRATION TESTING
  • POLICY DEVELOPMENT
  • COACHING
  • METRICS
  • GOVERNANCE
  • RISK
  • POLICY

Project Portfolio

We have helped customers improve their security and protect their customers. Just take a look.
Go Back

About US

We help organizations build software with security in mind.
Securing applications since 2007. Software leadership since 1997.

Jemurai was formed to break out of traditional security vendor norms and form a set of offerings specifically to help development organizations improve their execution with regard to security.

We excel at engaging with organizations where stakeholders and developers collaborate through agile processes, because we have ourselves run teams using agile methods.

Jemurai is often represented at both security and developer conferences, including AppSecUSA, RailsConf and others. Our passion for bringing security to developers in a constructive way makes us truly unique in the industry. See our Talks and Blog content for more information.

  • Builders

    We are expert developers. We know how to communicate with developers and managers about security.

  • Security Tools

    We built security tools for years and understand the tool landscape as only engineers can.

  • Leadership

    We have run agile teams and advised executives - we can manage both up and down the team chain.

  • Innovation

    We are thought leaders on adapting existing processes and tools to continuously improve security delivery.

31

Average Problems Reported

31

Average Remediation Suggestions

50,000,000+

Lines of Code Reviewed

16

Conference Talks

Methods

We work with the CTO, managers, developers and stakeholders to make security part of the process.
Work with Business

Give the business the information they need to make security decisions. Don't try to scare them. Always provide a risk context.

Focus on the Fix

Always provide an explanation and steps to test and fix a solution to the problem. Ideally talk about how to prevent it from happening in general.

Developer Collaboration

Earn the respect of developers and become a trusted advisor. Empower them to make the right design choices. Talk with them a lot.

Management

Communicate concisely and with periodic updates. Manage the project so that the client doesn't have to.

Visibility

Make security visible. Talk about what is or is not being done. Find data to support decisions.

Agility

Continue to improve and help clients improve. Stay on the cutting edge while adapting applicable ideas to produce a practical solution.

Testimonials

Check what some of our awesome happy clients are saying about us.