Secure Code Warrior launches Bedrock security training

Secure Code Warrior has signed a strategic collaboration agreement with Amazon Web Services and launched Amazon Bedrock training modules on its platform.

The new material is aimed at developers and engineers working with generative AI applications.

The agreement connects Secure Code Warrior's training business with AWS's push around Amazon Bedrock, its service for building generative AI applications and agents. The new modules are designed to help development teams adopt secure practices when using Bedrock.

Security focus

The training focuses on securing infrastructure as code for Amazon Bedrock through Terraform. It is intended to expose users to common security issues in AI and large language model deployments, including prompt injection, excessive agency, insufficient logging, and information exposure.

The package includes four coding labs, four AI challenges, and one walkthrough mission. Delivered through the Secure Code Warrior platform, the exercises give developers direct practice in identifying and addressing security weaknesses in controlled environments.

The launch reflects growing demand for practical security training as companies introduce generative AI tools into software development and customer-facing systems. Many have moved from limited testing to wider deployments, raising concerns about how developers manage risks tied to model behaviour, data handling, and system access.

Pieter Danhieux, Chief Executive Officer and Co-founder of Secure Code Warrior, said the company sees a gap between interest in AI deployment and the level of hands-on security knowledge within many development teams.

"Software development is being augmented by generative and agentic AI technology on an unprecedented scale, and this strategic collaboration could not come at a more mission-critical moment for both security leaders and future-focused developers," said Danhieux.

"As organizations continue to adopt generative AI applications and tools, an inherent level of risk is introduced, but this risk dramatically increases when developers are not properly educated on the tools and platforms they are leveraging. Developers need more than theoretical guidance; they require practical experience in identifying and mitigating real-world threats. By entering into this SCA with AWS to deliver hands-on training for Amazon Bedrock, we're helping enterprise teams learn to confidently address AI vulnerabilities and red flags so that they can build AI applications that are secure by default," added Danhieux.

Customer view

Secure Code Warrior also cited OpenText as an early user of Amazon Bedrock in its development and product work. The customer reference highlights how security training vendors are trying to tie their products more closely to the cloud services and AI systems companies already use.

"Amazon Bedrock is a foundational service for both our AI-assisted development and AI-powered product functionality across platforms. Secure Code Warrior's new interactive Bedrock training modules empower our developers with the hands-on experience to further strengthen our ability to prevent AI risks like prompt injection and data leakage. Proactive controls enable our teams to learn to build secure-by-design habits from the start, accelerating our AI roll out into a production-ready environment without sacrificing security or software quality," said Dylan Thomas, Senior Director of Engineering at OpenText.

AI risk training

Secure Code Warrior, founded in Australia and operating across several markets, has built its business around secure coding education for software developers. More recently, it has expanded its focus to governance and oversight of AI-assisted software development, an area that has grown as coding assistants and AI-driven development tools have become more common in engineering teams.

The Bedrock modules are another example of security companies creating AI-specific training rather than adapting older application security courses. Risks such as prompt injection and data leakage differ from traditional coding flaws because they often emerge from model interactions, system prompts, permissions, and the way applications connect models to external tools and data sources.

That shift has created a market for training that combines software security basics with operational guidance for AI services. It also reflects pressure on companies to show that developers understand the risks of deploying AI systems in production, particularly in regulated sectors and large enterprises where governance requirements are increasing.

Platform strategy

For AWS, the collaboration gives Bedrock users access to training built around practical scenarios in a platform already used by developer teams. For Secure Code Warrior, it provides a way to position itself more directly in the growing market for AI security education tied to specific cloud products.

The new content centres on developer habits and decision-making rather than automated safeguards alone. That emphasis suggests security training providers see human judgement as a continuing weak point in AI roll-outs, even as cloud vendors add more controls and policy tools around model use and deployment.

The modules are available now through the Secure Code Warrior platform and are designed to simulate remediation of real-world AI risks for Amazon Bedrock users.