Re: Credibility gap
It doesn't matter who you are or what your knowledge is, if you have a public facing website that has any sort of database behind it then you have to know about the very basic security issues of XSS and SQLi.
SQLi to mainly protect your system, XSS to mainly protect your customers.
After that you can learn about more advanced secure coding techniques.