Our Services

Jemurai takes a human based, proactive approach to cyber security- our training and consulting help clients embed security into their policy, code and software development life cycle.

Build App Security Team

We help our clients build their app security team, lay process groundwork and implement automation.

Security Engineering

We build software components for security and help automate security within devops pipelines.

Strategy

We help clients plan, budget and prioritize for security across their portfolio of services.

Governance and Compliance

Many of our clients are concerned about SOX, PCI, FERPA, HIPAA and other standards and regulations, we help build policy and audit to manage risk.

Featured Projects

Here are some of our recent projects.

Latest Jemurai Blog Posts

Top 5.5 AppSec Predictions Sure To Go Wrong

Posted By

In keeping with an all too popular industry practice of producing year end Top 10 lists, at Jemurai we developed a Top 5.5 Application Security Trends for 2018.  It is obviously meant to be a little bit fun, given the “Top 5.5” title but we tried to capture what we think are significant important things […]

Jan 18,2018No Comments

Turns Out Policy in Markdown in Github Works!

Posted By

I’ve seen policies from lots of companies big and small.  Generally, I’m a techie engineer so I don’t love policy.  I’ve also seen a fair number of companies that clearly don’t follow their policy.  I’ve also seen companies that get certifications like SOC2 and ISO that are meaningless because they systematically lie and their auditors […]

Jan 12,2018No Comments

Your Vulnerability Spreadsheet Says More Than You Think

Posted By

More often than I’d care to say, I work on projects where a client has a vulnerability spreadsheet to rule them all.  They’re using the spreadsheet to track all of the open items that were found across all of their projects with different tools and pentests. One initial interesting point is that these companies don’t […]

Jan 9,2018No Comments