Consulting and training to help our clients build secure software and manage their risk.
We help our clients build their app security team, lay process groundwork and implement automation.
We build software components for security and help automate security within devops pipelines.
We help clients plan, budget and prioritize for security across their portfolio of services.
Here are some of our recent projects.
Background Last week a well established application security company (that I respect) published availability of a $1,000,000 insurance policy for breach related costs related to applications it provides security source code review for. I assume that the idea is that the review has more value if it has some financial assurance behind it. Some folks who […]
Introduction At Jemurai, we contribute extensively to OWASP Glue and use it on some of our projects where it makes sense to tie together automation around security. We kept seeing the same types of integration challenges and found that it was useful to have a common starting point to solve them. It is far from perfect […]
At Jemurai, we often find ourselves in situations where a company wants to build their own application security program but doesn’t really know how. That’s a common and very understandable problem given the trends in the industry (increasing focus on app security) and the inherent complexity of doing application security well. We take great pride teaching […]