Continuous Application Security Testing
Because of its specialized nature, many aspects of application security testing are often assigned to testers from another team or another company, and they may be brought in to perform a point-in-time assessment prior to a release. Your team is interested in implementing continuous deployment, and automation seems like the obvious answer. But when attempting to automate your security tests, you may run into a wide variety of challenges beyond simply adding a tool into your build system. Josh Gibbs will discuss how to choose what to test, how to avoid slow tests, how to keep compliance people happy, and how to best coordinate testing among distributed teams. You will learn to navigate potential roadblocks when it comes to your application security testing and be prepared to overcome them.
Josh Gibbs is a senior customer success manager at Contrast Security, where he helps companies build security into their applications. Prior to his current role, Josh led the security testing team at a major cloud hosting provider. He has previously worked in development and security roles within the marketing technology and finance industries. In his spare time, Josh enjoys gardening, barbecuing, and spending time with his family.