YoVDO

Testing Security the Right Way

Offered By: OWASP Foundation via YouTube

Tags

Conference Talks Courses Software Development Courses Quality Assurance Courses Team Collaboration Courses Software Security Courses Automated testing Courses Security Testing Courses

Course Description

Overview

Explore effective strategies for integrating security testing into the software development lifecycle in this 19-minute conference talk from OWASP Global AppSec Tel Aviv. Learn why involving the QA team in security processes is crucial and how to shift security tasks to QA for optimal results. Discover practical examples, templates, and workflows for implementing security testing at both system and feature levels. Gain insights on turning QA professionals into security champions and fostering collaboration between QA and security teams. Understand the benefits and potential challenges of this approach, and acquire actionable tips for incorporating security testing into every sprint of your development process.

Syllabus

Intro
Who are you
What this talk is about
QA team
Why QA team
Security testing area
System level workflow
Feature level workflow
Simulation
Process
Test Cases
Benefits
Surprises
Final Thoughts
Turning QA into a Pen Tester
Dedicated Security Champions
Recommended Security Champions


Taught by

OWASP Foundation

Related Courses

Pattern-Oriented Software Architectures: Programming Mobile Services for Android Handheld Systems
Vanderbilt University via Coursera Engineering Maintainable Android Apps
Vanderbilt University via Coursera Software Design as an Element of the Software Development Lifecycle
University of Colorado System via Coursera Secure Software Development
Pluralsight Secure Software Concepts for CSSLPĀ®
Pluralsight