There used to be a cheat sheet here, but I transferred it into the Rails guides and my first book (now outdated) about Rails security. Here are more up-to-date guides:
A guide to a week with a Rails security strategy
This includes a 5-page guide on how to form the habits and a plan for each day for you to follow.