Shifting Security Left in Your Continuous Testing Pipeline
Security is often the black sheep of testing. At many organizations, while functional testing is continuous throughout the lifecycle of the application, the security “scan” only takes place before the release. Why is functional testing allotted so much more in terms of resources and attention than security testing? Glenn Buckholz can’t answer that question, but he will discuss how you can get security to be considered a first-class testing citizen in your organization. He will cover technologies that integrate cleanly into the modern CI/CD pipeline, the pros and cons of SaaS security offerings, and the cost-benefit arguments that can help you convince management to do the right thing. Come learn how to convince the powers that be to introduce security testing into the early phases of your continuous testing pipeline.