By Declan Ingram
An interesting thing happened today. Someone asked me to find a Australian web development company who advertise themselves as developing secure code. (Editor Note: Surely that goes without saying Decman? LOL)
Simple Google search, I thought…Well guess how many web development companies I found who specify that they write secure code?
NONE. Yep! That’s right. Of course if you ask them, “Hey are the sites that you develop secure?”. You know the response is going to be “Oh Definitely!”, until they hand you the completed site, all shiny and new……you perform some security testing and BAM – the response becomes “Oh CRAP!”
So, if there are any developers out there who want a niche – learn to write good code and advertise it…..but first, let me know….there may well be a job in it for you!
PS. It is possible that all web developers write secure code, so it isn’t a differentiator worth advertising…..in which case next time I go flying, I’ll take a screaming pig and not a Robin 2160!
Editor Note: This can be done but “security” costs extra on websites – or so many of our clients have been told by dev shops in the past after our testing for them has broken the sites 
To be fair as you know, we’ve spent a good deal of time with dev shops after such events to help train their developers and credit to those guys. They should be using this as a differentiator. Sad that something like this which should be standard is considered such.
Add me to the list. When it comes to talking about the security of a new site with random development companies, well after all functional specs are confirmed, you can see their comfort zone is gone and responses go into BS mode. Confidence level on our part drops to almost zero. Yes, I have had many talk about costs then rising also. Work that out.
It is interesting how *we* can own sites and *they* can do some out there stuff with web apps or just apps in general. We’ll hack your site until your mother is begging us to stop but we can’t advise you on how to make it look funkier. We need a hybrid; chinese dude, mixed with an Indian, mixed with a marketing guy, mixed with a MOFO haxor dude mixed with an awesome gamer dev dude and the world is sweet! Oops, forgot business applications. Must add some dude from Inv banking dev area and then it’s all set! Send CVs through to Declan above!