Reality Checking Your Security Testing Program

Presented by

Darren P. Meyer, Senior Security Researcher for Veracode

About this talk

In this webinar, security teams and developers will learn how they can improve their application security assessment program by fitting security testing into the daily build and test cycle. This enables organizations to create a continuous quality assurance process across all phases of development, whether they’re using Agile or other methodologies. Development and security teams will learn how to: -Embed security testing into daily build and test cycles as well as the certification or quality control phase of development. -Introduce security testing into the support phase of software development in light of the constantly evolving threat environment. -Transform and automate security testing by rapidly providing actionable and measurable results to the development organization and keeping pace with agile initiatives. Most security assessment programs were built to meet a particular compliance standard, and don’t scale beyond these requirements. This results in process mismatches, lack of agility, and incentive misalignment, which means that security ends up getting de-prioritized. It's time to move beyond a “check-box” approach, and embed security testing into the entire application lifecycle.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (396)
Subscribers (31044)
Veracode is intelligent software security. The Veracode Software Security Platform continuously finds flaws and vulnerabilities at every stage of the modern software development lifecycle. Prompted by powerful AI trained by trillions of lines of code, Veracode customers fix flaws faster with high accuracy. Trusted by security teams, developers, and business leaders from thousands of the world’s leading organizations, Veracode is the pioneer, continuing to redefine what intelligent software security means. Learn more at