LASCON X has ended
Back To Schedule
Thursday, October 24 • 10:00am - 11:00am
A Stratagem on Strategy: Rolling Testing into Product Testing

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Commercial software products rely on formal test strategies to describe who will perform testing, the process that will be followed, the depth of testing, and more. Test strategies are extended by test plans that detail specific tests that will be executed and how success will be measured. Test strategies and plans support objectively evaluating that software meets requirements and functions properly.

Conversely, security teams think about where security gates should be in the SDLC and deploy SAST, DAST, IAST, or a combination. Rarely is it considered what level of coverage these methods provide, and output from security testing is not mapped back to requirements. Compared to other teams involved in the SDLC, security seems to just be winging their test strategies and plans.

This talk will describe how product teams leverage test strategies and plans to make sure software delivered meets requirements, and how security can do the same.


Kevin Fealey

Senior Manager, Product Security, EY

Thursday October 24, 2019 10:00am - 11:00am CDT
Contrast Security Room 2525 W Anderson Ln #365, Austin, TX 78757, USA