Overview
Dive deep into Interactive Application Security Testing (IAST) with this comprehensive conference talk from the Central Ohio InfoSec Summit 2016. Explore the challenges of implementing security in Agile environments and learn about automation strategies. Examine three real-world cases, focusing on the first case in detail. Discover how to overcome challenges, foster cooperation, and enhance security visibility within development teams. Gain insights into continuous integration, Agile maturity, and adapting Scrum methodologies to prioritize security. Follow the speaker's journey through a three-week implementation process, covering orchestration, HTML reporting, and e-commerce considerations. Understand the importance of test automation in securing modern applications and improving overall development processes.
Syllabus
Intro
Agile Security Challenge
Automation
Three Cases
First Case
Challenges
Cooperation
Security Visibility
Continuous Integration
Integration
Agile maturity
Scrum to the letter
Security drove it
Week 1 2 3
Orchestration
HTML Reports
Ecommerce
Process
Test Automation