After a decade of news detailing countless successful cyber‑attacks, it’s hard to imagine a corporation not understanding they need a software security solution. Unlike implementing software quality assurance, the processes that go into making applications more secure are still relatively immature. This paper provides seven practical steps organisations can begin today to secure their applications and prevent the damages cyber‑attacks can bring.