Security Innovation Enables Elsevier’s Application Development Revolution

June 20, 2016 – Elsevier, world-leading provider of information solutions, recently engaged cybersecurity provider Security Innovation to drive an application security transformation as they rapidly move from a traditional print information provider to a leader in web-based, digital solutions.

The biggest challenge that Elsevier’s development team was facing was the need to increase security maturity within application development to protect new digital platforms from the outset. A check-the-box compliance approach wouldn’t suffice as their organizational attack surface had significantly expanded. Elsevier needed experts who could match the agility of the new platforms and build the secure development skill needed for their print-to-electronic transformation.

“Security awareness works, but is not typically part of formal app development curriculums,” said Alexander J. Fry, Vice President of Software Security Assurance at Elsevier. “Security concerns take a back seat to form and functionality. So making developers security aware requires a revolution in app development.”

Leveraging its award-winning courseware, Security Innovation tailored a training program for Elsevier specific to the publisher's technology platforms. Progressive learning paths increased in difficulty as developers moved through their role-based curriculum. The end results included less time spent patching retroactive security discoveries, the ability to measure expectations for each developer, and standardized security levels.

“Elsevier took a deliberate and well-measured approach to improving the security of their applications to adapt to the new threats of emerging technologies. The foundation they’ve put in place will allow them to build features with multiple layers of protection more rapidly,” said Jason Taylor, Security Innovation’s CTO and Microsoft MVP for Security.

Recognized as a leader in the Gartner Magic Quadrant for Security Awareness Training for two consecutive years, Security Innovation offers the industry’s largest role, technology- and platform-specific training platform. With courses ranging from foundational to advanced level, it is unmatched in its ability to provide the most contextual and progressive training for all skill levels.

To learn more about Elsevier’s transformation and their continued security training and development efforts, read the complete success story here.

About Security Innovation

Since 2002, Security Innovation has been the trusted partner for cybersecurity risk analysis and mitigation for the world’s leading companies, including Microsoft, Sony, GM, Disney, Google and Dell. Recognized as a Leader in the Gartner Magic Quadrant for Security Awareness Computer-Based Training for the second year in a row, Security Innovation is dedicated to securing and protecting sensitive data in the most challenging environments - automobiles, desktops, web applications, mobile devices and in the cloud. Security Innovation is privately held and headquartered in Wilmington, MA USA. For more information, visit