Culture
In-depth guides and analysis on culture from the Safeguard engineering team.
9 articles
What Does a Product Security Engineer Actually Do?
Product security engineer isn't just AppSec with a different title — it's the role that owns security decisions inside the product itself, not just the pipeline that ships it.
Capture the Flag in Cybersecurity: How CTFs Build Real Skills
CTFs compress years of security intuition into weekends of deliberate practice. The main formats, what each one actually teaches, and how to start without getting demoralized.
PentesterLand and Other Security Research Feeds Worth Following
PentesterLand's weekly link roundup of write-ups, tools, and CTF material is one of the best-curated feeds in offensive security — here's what it covers and what else belongs in the same reading list.
CTF Cyber Security Competitions Worth Trying
A practical rundown of CTF cyber security formats and specific competitions worth an engineer's time, and how the skills transfer directly back to application security work.
OWASP Webinars and Training Resources Worth Your Time
Most application security teams already know OWASP by reputation but rarely tap its live training — here's which formats are worth blocking calendar time for.
Online Security Courses and Training Platforms Worth Your Time
There are hundreds of online security courses competing for your attention — here's how to pick a cybersecurity training platform that actually builds skill, plus where to find solid owasp top 10 training free of charge.
OWASP Training: How to Actually Run It for a Dev Team
OWASP training only sticks when it's tied to the vulnerabilities your own codebase actually has, not a generic slide deck run once a year.
How to Pronounce Snyk (and Other Security Tool Names People Get Wrong)
The correct answer to how to pronounce Snyk, plus a rundown of the other AppSec tool names — Nginx, Kubernetes, Grype — that trip people up in meetings.
What Is a Security Champions Program?
AppSec teams are outnumbered 100 to 1 by developers. A security champions program is the only staffing model that scales — here is how to build one that lasts.