When it comes to software, developers are really the only ones in an organization who can fix the vulnerabilities in their code. Yet developers often don’t have the training they need to identify or remediate vulnerabilities and to code securely to reduce the number of vulnerabilities found in production. In addition, security teams often don’t have the bandwidth or expertise to teach them. The result is an ever-growing mountain of security debt. Efforts to train developers to help solve this problem often fall short because content is too long, the content is irrelevant to an organization’s tech stack and/or the approach to learning is unengaging.