Skip to main content
Thursday, May 2, 2013 - 1:30pm - 2:30pm
Security Testing

Better Security Testing: Using the Cloud and Continuous Delivery

Even though many organizations claim that security is a priority, that claim doesn’t always translate into supporting security initiatives in software development or test. Security code reviews often are overlooked or avoided, and when development schedules fall behind, security testing may be dropped to help the team “catch up.” Everyone wants more secure development; they just don’t want to spend time or money to get it. Gene Gotimer describes his experiences with implementing a continuous delivery process in the cloud and how he integrated security testing into that process. Gene discusses how to take advantage of the automated provisioning and automated deploys already being implemented to give more opportunities along the way for security testing without schedule disruption. Learn how you can incrementally mature a practice to build security into the process—without a large-scale, time-consuming, or costly effort.

Gene Gotimer, Coveros, Inc.

Gene Gotimer is a senior architect at Coveros, Inc., a consulting company that uses agile methods to accelerate the delivery of secure, reliable software. Gene is an experienced software developer who focuses on continuous integration, static code analysis, automation, and any tool he can find to do his work for him. For the past few years, he has been on a team that is bringing a continuous delivery process into the US Department of Defense, showing that higher quality software can be delivered quicker and with more security by using agile techniques.

read more