At the 7th and 8th Annual CISSE conferences, case studies were presented describing a process for adding a three-course track in information assurance to the curriculum of a small, private university in the Pacific Northwest, with only a moderate budget and without hiring additional permanent faculty. [1, 2] In this paper, we finish describing the evolution of that curriculum, by discussing the third, and final, course in the series—Secure Code.  This course was designed to lead a primarily professional, mature student audience to a learning epiphany that would change their behaviors as developers. To achieve this end, the authors developed a pedagogical model for designing IA curriculum that draws on sources from both East and West. Indeed, several months later, after having completed the course, students indicated they still were using the secure coding techniques they were taught.