API testing has become more and more popular as service-oriented architectures have become common. In addition, testing at the API level can be effectively automated to provide maintainable regression tests that work well in a DevOps process. In this tutorial, Jeffery Payne discusses what API testing is all about and how it is effectively done. Techniques and tools are discussed that highlight where in the testing process API testing makes the most sense to perform. Various open source and commercial tools will be demonstrated and the pros and cons of various solutions discussed. Effective...
Jeffery Payne
Jeffery Payne is CEO and founder of Coveros, Inc., a consulting company that helps organizations accelerate delivery using agile methods. Since its inception in 2008, Coveros has become a market leader in agile and DevOps engineering while being recognized by Inc. Magazine as one of the fastest growing private companies in the country. Prior to founding Coveros, Jeffery was Chairman of the Board, CEO, and co-founder of Cigital, Inc., a market leader in software security consulting. Mr. Payne has published over 30 papers on software development and testing as well as testified before Congress on issues of national importance, including intellectual property rights, cyber-terrorism, and software quality.
Speaker Presentations
Application Security Tools for Continuous Testing
There are lots of tools out there to support security testing activities. You’ve probably seen some of the acronyms used to describe them when looking at marketing material or reading about application security - SAST, DAST, IAST, RASP, etc. But the question is always which tools to use where within your testing process. This is particularly important in a DevOps model where continuous testing is used to continuously validate code as it changes. Selecting the wrong tools or using them at the wrong place can impact your delivery process significantly. In this tutorial, Jeffery Payne...
Web Security Testing: The Basics and More
Web applications are often security critical or serve as front-ends for security critical applications, making web testing for vulnerabilities an essential part of software testing. Unfortunately, most software testers have not been taught how to identify web security issues while testing applications. Join Jeffery Payne as he shares what you need to know to security test web-based applications as part of your overall testing process. Learn about the most common web security vulnerabilities and how they are introduced into web code and exploited by hackers. Explore test techniques for...
Integrating Automated Testing into DevOps
In many organizations, agile development processes are driving the pursuit of faster software releases, which has spawned a set of new practices—DevOps. DevOps stresses communications and integration between development and operations, including rapid deployment, continuous integration, and continuous delivery. Because DevOps practices require confidence that changes made to the code base will function as expected, automated testing is essential. Join Jeffery Payne as he discusses the unique challenges associated with integrating automated testing into continuous integration/continuous...
Test Management in Agile—What Happened to All My Testers?
Substantial confusion exists about the roles and responsibilities of test management when using an agile software development process. Agile seeks to streamline project management and leadership under the role of a ScrumMaster. But what does this mean for test managers? How do they stay involved in the process? What role do they fill? Is it possible that test managers are no longer needed? Join Jeffery Payne for a collaborative dialog to discuss the pros and cons of a variety of test management models he has seen used by companies who have adopted agile. Learn how to best position yourself...
Opening Remarks
Welcoming remarks from Leadership Summit Moderator, Jeffery Payne to kick the Summit off and discuss the days agenda.
Think Tank Discussion Part I—Problem Definitions
Join with your peers in an engaging and highly interactive session to discuss the issues that affect you most. Using answers to the question “As a Leader, What is Keeping You Up at Night?”, participants will form small groups to work on finding solutions to pressing test management issues. Discussions will review identified issues, barriers to change, and focus on innovative strategies and practical next steps. At the end of the think tank, all feedback will be collected and posted online to encourage further collaboration.
Think Tank Discussion Part II—Leadership Solutions
Based upon the problem definitions developed during Part I of the Think Tank, small groups will brainstorm on how to best solve these challenges, leveraging the collective wisdom of peers and Summit speakers. Each group will designate a representative to present its results and practice delivery.
Think Tank Discussion Part III—Presentation of Results
Small group representatives will each be given five minutes to present their leadership solutions. Summit participants will vote on which group produced the best solutions.
Wrap-Up
Wrap-up of the Leadership Summit.