Agile + DevOps East 2019 - Tester
Wednesday, November 6
Where Does Data Come From?
With all the tools available on the market, it can be overwhelming to figure out which ones might meet your needs and which ones will work best for you to create a high-performing team. Join Jennifer Bonine as she explains the relationship between the DevOps cycle and your environment, and how a hub-and-spoke model can link all your different data sets and tools together. She'll identify opportunities for applying test data analytics across the engineering and test landscape, ranging from high-value test cases to dynamically generated regression test suites. She will review ways to...
An Agile Fireside Chat with Linda Rising
Come get your questions answered by an agile expert! We won't have an actual fireside, but Linda Rising will be on hand to answer your questions and discuss the topics that are most important to you. Linda is an internationally known presenter on topics related to agile development, patterns, retrospectives, the change process, and the connection between the latest neuroscience and software development. And she wants to discuss whatever interests you. Bring your questions and be ready for a lively, interactive discussion.
Selenium Tests at the Speed of Headless
Testing is shifting left. Developers want instant feedback on the quality of their code, and testers want to incorporate tests earlier in the pipeline without slowing down development efforts. Testing in full browsers is great when you’re near the end of the pipeline and need to confirm cross-browser compatibility, but for the scale and speed required for these early pipeline tests, there is a need for a more effective solution. Enter headless browsers, an emerging trend that allows you to run your early pipeline tests at scale. Headless offers a lightweight option that gives developers...
Testing Serverless Applications
Serverless cloud applications are rapidly moving into the mainstream. In this model, teams focus on developing and deploying code on a known technology stack and runtime, with fixed interfaces for application, database, and network. It offers the advantage of lower costs, faster development, and elastic growth. But testing serverless applications also brings significant challenges to testers. Because the stack is maintained by the cloud provider, it is updated with new versions and security patches on a regular basis. Testers have to continuously test the stack interfaces to make sure that...
Thursday, November 7
The Psychology of Chaos Engineering
Chaos engineering, failure injection, and similar practices have verified benefits to the resilience of systems and infrastructure. But can they provide similar resilience to teams and people? What are the effects and impacts on the humans involved in the systems? This talk will delve into both positive and negative outcomes for all the groups of people involved, including users, engineers, product owners, and business owners. Using case studies from organizations where chaos engineering has been implemented, Matty Stratton will explore the changes in attitude that these practices create,...
Stabilizing Continuous Testing in DevOps
PreviewSoftware testing lags behind the pace of features development and digital innovation. Despite recent advancements, testing remains one of the biggest challenges in DevOps. Research shows that DevOps teams have an average of less than 60 percent test automation coverage—and that’s a problem. To scale DevOps and agile and realign the entire software release cycle, Eran Kinsbruner believes there needs to be a better solution. To increase test automation coverage, teams need to match software testing deliveries with the right testing tools, skill sets, and personas. Eran will explain...
Legacy Code and Testing: Let's Energize It!
PreviewDo you want to apply test automation to decade-old spaghetti code but aren't sure where to start? Many teams talk about needing automated tests in order to deliver faster, better quality but don't know just how to get there. Their code was created without a lot of the tools we have today or may have automation that centers on slow, record-and-playback methods. Join Leslie Lowman for an in-depth look at examples of this situation. She'll give some prerequisites, like instituting a solid testing model that focuses on automation, and show how to apply the testing model to older code,...
What's Next for QA?
In today’s ever-evolving world of technology, how can QA teams continue to show value? QA isn't going away, but it is evolving again, and it's primed to continue to add value to companies that are willing to change. Derek Zell will outline how traditional compartmentalized roles are becoming a thing of the past and how to position your team (and yourself) to be an integral part of the latest technical evolution. He will cover what these new roles and functions could be, ways to evolve and grow as a tester, and how to pivot within a given skill set, all using real-world examples and case...
Using Lean XP to Supercharge Your Agile Delivery
PreviewMost teams that do agile development start with Scrum. And why not? Scrum is a proven method for focusing your team, ensuring that work adds value, and minimizing the risk with release. Then, after awhile, Scrum becomes stagnant. There are no more speed increases, and the team focuses more on ceremonies than delivery. At this point, Extreme Programming (XP), and Lean XP in particular, is the next step in agile maturity. Lean XP means developing software at the last possible moment ("just-in-time development") using one-week sprints, test driven development, pairing at all levels,...
Maximizing Agile Benefits through Understanding Learning Styles
PreviewThe Agile Manifesto says we value people and interactions over processes and tools. Yet when we talk about the agile methods, we usually end up talking about processes. Agilists use timeboxing as a forcing function to draw out resolutions and decisions. What if we just needed a better way to describe our needs and issues? What if we could actually be more effective with our communication? Join Robin Foster as he explores the relationships between learning, memory, communication, teaching, and the agile framework. Discover the cognitive science behind the process of learning new...
Contract Testing with Pact: A Different Approach
With the microservice architecture evolving and becoming a golden standard, the necessity of testing the contracts between services appears to be more and more obvious. One of the most interesting solutions here is the Pact tool, which helps with testing and verifying the API contracts in a CI/CD manner and opens up a lot of interesting possibilities. However, the devil is always in the details: the implementation. We need to configure the Pact mock servers, but similar configurations are often needed across all the different parts of testing, from the verification of the providers to end-...
Friday, November 8
Panel Discussion: Effective Integration of Tooling into DevOps
Integrating security tools into a DevOps pipeline is about more than just dropping them into a test environment. It’s about putting them where the business return is greatest. Where fast feedback can be gathered. Picking the right tools for the job. Join DevSecOps experts as they discuss and debate the merits of SAST, DAST, IAST, and RAST tools for your pipeline. Learn about the pros and cons of each type of security testing and how to choose the right tools for your needs. Hear how various organizations have gotten started with DevSecOps tooling and learn tips and trick for implementing...
Taking DevSecOps To The Next Level - Cutting Edge Tools for your Pipeline
DevSecOps is so much more than forcing developers to use legacy scanning tools. In this talk, we will discuss a continuous, effective, and scalable DevSecOps pipeline using free cutting-edge tools. We'll discuss and show IAST (Interactive Application Security Testing) to accurately pinpoint vulnerabilities in both custom code and libraries in real time without scanning. We'll discuss and show RASP (Runtime Application Self-Protection) in production to gain visbility into application attaches and to prevent vulnerabilities from being exploited. And we'll discuss how to integrate the results...
Panel Discussion: Getting Development and Security To Work Together
DevSecOps is all about getting security teams, practices, processes, and tooling integrated into your DevOps process but often getting a cross-functional team that includes security in place is difficult. Join DevSecOps practitioners in exploring the best ways to get security groups and personnel involved in day-to-day DevOps teams. Learn what role security personnel play in Sprint activities and how to remove compliance from being an end-of-lifecycle hurdle. Hear how leading organizations successfully shift security left and tips and tricks for getting started.