Your organization is doing well with functional, usability, and performance testing. However, you know that software security is a key part of software assurance and compliance strategy for protecting applications and critical data. Left undiscovered, security-related defects can wreak havoc in a system when malicious invaders attack. If you don’t know where to start with security testing and don’t know what you are—or should be—looking for, this tutorial is for you. Jeffery Payne describes how to get started with security testing, introducing foundational security testing concepts and showing you how to apply those concepts with free and commercial tools and resources. Offering a practical risk-based approach, Jeffery discusses why security testing is important, how to use security risk information to improve your test strategy, and how to add security testing into your software development lifecycle. You don’t need a software security background to benefit from this important session.
