Our company has recently decided to invest more in security and some development teams (like mine) have been assigned a security engineer. Mine has just graduated from university and is still a junior engineer. We do not have "seniors" in our team but I always want to invest and develop it to become a professional in its own right.
I am in no way a security expert, I am nevertheless responsible for the training of my team. So my question is:
Are there any good resources / books / courses that you would recommend in the areas of "secure development", "security code reviews", "HTTP (S) services", "SaaS cloud security"?
I look forward to your help!