What Going All-Remote Taught Us About AppSec and Testing Shortfalls

Presented by

Rhys Arkins, Director of Product Management at WhiteSource and Gleb Bahmutov, VP of Engineering at Cypress

About this talk

The Covid-19 pandemic led to a lot of tech companies converting to remote teams almost overnight, and for some this may even become the norm. While conferencing such as Zoom are widely known for substituting for face-to-face meetings, it's much less appreciated how the disruption has increased asynchronous communication approaches as people are not always available online at the same time. Shifting to asynchronous communication has shown up some weaknesses companies may have had, particularly when it came to security and testing. If a company's approach to these had been more manual and revolved around the relevant people being co-located or in constant direct communication, then this lack of process or automation can result in increased risk. So as we adjust to new ways of working, how do you ensure that your appsec procedures are designed to withstand any changes in your team dynamics ? Join this session and leave with insights on: -What did going involuntarily remote reveal to us about existing security and testing weaknesses? -Practical examples of ad-hoc or manual security vs automation -What should change forever even if/once we go back to "normal"?

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (195)
Subscribers (16811)
Mend, formerly known as WhiteSource, effortlessly secures what developers create. Mend uniquely removes the burden of application security, allowing development teams to deliver quality, secure code, faster. With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, link here, the open-source automated dependency update project. For more information, visit www.mend.io, the Mend blog, and Mend on LinkedIn and Twitter.