Hi [[ session.user.profile.firstName ]]

Protect Applications With OWASP API Security Top 10 and SAST

APIs are the building blocks of modern applications. If the APIs aren’t secure, the system isn’t secure, but API security testing is tricky: it requires both API testing skills as well as developer skills to exercise the APIs in a meaningful way. It also has the challenges of security testing – you need security knowledge as well as application knowledge to attack the system and validate its behavior.

Shifting API security testing left is critical to minimize costs and reduce impact on release schedules. DAST and API testing get you started, but the best way to get ahead is to implement security best practices and standards in development, using SAST. The OWASP API Security Top 10 is a great way to start.

In this session, learn how SAST can help drive your security testing efforts, including:
• The importance of API security and how OWASP API Security Top 10 addresses the need.
• Adding SAST to your SDLC and pipeline to harden the application against attack.
• Producing the right reports for your security team without extra effort.
Live online Apr 22 4:00 pm UTC
or after on demand 60 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Sandy Carielli - Principal Analyst, Forrester Research and Arthur Hicken - Chief Evangelist, Parasoft
Presentation preview: Protect Applications With OWASP API Security Top 10 and SAST

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Protect Applications With OWASP API Security Top 10 and SAST Apr 22 2021 4:00 pm UTC 60 mins
    Sandy Carielli - Principal Analyst, Forrester Research and Arthur Hicken - Chief Evangelist, Parasoft
    APIs are the building blocks of modern applications. If the APIs aren’t secure, the system isn’t secure, but API security testing is tricky: it requires both API testing skills as well as developer skills to exercise the APIs in a meaningful way. It also has the challenges of security testing – you need security knowledge as well as application knowledge to attack the system and validate its behavior.

    Shifting API security testing left is critical to minimize costs and reduce impact on release schedules. DAST and API testing get you started, but the best way to get ahead is to implement security best practices and standards in development, using SAST. The OWASP API Security Top 10 is a great way to start.

    In this session, learn how SAST can help drive your security testing efforts, including:
    • The importance of API security and how OWASP API Security Top 10 addresses the need.
    • Adding SAST to your SDLC and pipeline to harden the application against attack.
    • Producing the right reports for your security team without extra effort.
  • Test Anytime, Anywhere With the Right Service Virtualization Solution Recorded: Apr 6 2021 50 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft and Grigori Trofimov, Senior Solution Architect, Parasoft
    Many enterprise development and testing teams struggle to fully verify their applications due to constraints in their environment. When services, systems, or endpoints are beyond their control or unavailable, testing becomes a bottleneck. As a result, they miss test coverage targets and delivery schedules, resulting in late-cycle defect detection or production outages.

    Augmenting your test environment with simulated services enables teams to develop faster and test earlier and more completely. When evaluating service virtualization solutions, there are many factors to consider for a successful deployment and ROI. In this session, we'll discuss key features and capabilities that have proven successful in virtual deployments. You'll walk away with a checklist to help assess your needs. 

    Learn about:
    - The impact of application testing delays and bottlenecks and how to address them.
    - The business and technical benefits of environment-based testing.
    - Key virtualization features to handle the size, scale, and complexity that a modern enterprise requires.
  • Continuous Testing Is the Answer to Quality at Speed Recorded: Mar 24 2021 53 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft
    Recent Forrester research has reinforced the software trend that application delivery is not just about speed — it’s about quality at speed. Quality is a top-of-mind priority for executives to deliver a compelling user experience. Leading brands are putting quality at center stage to focus on the success of key initiatives. The challenge is in achieving these quality goals in a timely manner to drive business results.

    Traditional testing practices are inefficient and late-cycle, which means you’re always playing catch up. There's a better way: continuous testing integrated within the DevOps pipeline. Join Mark Lambert, VP of Strategic Initiatives at Parasoft, to learn how to:
    - Avoid technical debt by aligning testing in-sprint with development.
    - Optimize the test practice to focus on the things that matter most.
    - Increase test reliability and coverage by using simulation to control the test environment.
  • Panel Discussion: Mitigating Cybersecurity Software Vulnerabilities in Medical D Recorded: Mar 16 2021 59 mins
    Seth Carmody, VP of Regulatory Strategy at MedCrypt & former FDA Leader and Andrey Madan, Lead Solutions Architect, Parasoft
    Panel discussion with former FDA leader. Most medical device manufacturers and software teams find the topic of cybersecurity threats and the evolving focus from the FDA uncomfortable. But what if you could listen in on a conversation with leaders, authors, and practitioners that have direct experience of the subject? What if you could ask them questions?

    Join us for a lively panel discussion with experts, Seth Carmody, VP of Regulatory Strategy at MedCrypt and former FDA leader, and Christopher Gates, Director of Product Security at Velentium and a principal author of "Medical Device Cybersecurity for Engineers and Manufacturers."

    Highlights include:
    •Root causes and threats in the medical device industry
    •Cybersecurity is not just a technology issue
    •Best practices in approaching cybersecurity and risk
    •The roles engineers and manufacturers play in cybersecurity
    •Software testing solutions that help remedy vulnerabilities
  • 3 Imperatives of Software Quality That Drive Digital Results Recorded: Mar 10 2021 48 mins
    Matt Klassen, Vice President, Parasoft
    The global pandemic has increased customer demand for digital products and innovation, and according to Gartner, this will only continue to accelerate. Software is a key enabler of the digital business but will only deliver the desired business outcomes if development teams modernize their quality practices to move to a continuous quality approach.

    Join us for this webinar in which Matt Klassen, a vice president at Parasoft, will reveal the software quality and testing imperatives your team needs to master to deliver the digital business results your organization expects. Matt will discuss practical tips for development teams to expand their definition of quality, embrace continuous quality practices, and integrate them into their CI/CD pipeline workflow.

    This informative webinar will explore:
    - A modern definition of quality that includes customer experience and business outcomes.
    - Integrating quality into the CI/CD workflow as a set of continuous practices.
    - When to shift left and when to shift right to maximize value and minimize risk.
  • Integrate Testing Into DevOps to Deliver Continuous Quality Recorded: Feb 24 2021 47 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft
    Many companies have adopted automated testing as a key part of their software development life cycle to improve application quality. But you can’t test quality into an application. If quality isn’t fully integrated into your Agile workflow and CI/CD pipeline, then you may be missing opportunities to reduce defects and accelerate delivery.

    Leveraging your existing DevOps and CI/CD ecosystem to incorporate continuous testing practices will help you assess the quality of your deliverables and optimize testing efforts. Join this webinar to reach your quality goals:

    - Reduce the cost of quality, security, and compliance.
    - Decrease the time between defect discovery and remediation.
    - Focus the team’s testing efforts where it matters most.
    - Optimize test execution to get in-sprint feedback from your CI/CD pipeline.
  • Save Time & Money: Calculate the ROI of Test Automation Recorded: Feb 12 2021 24 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft
    To accelerate software deliveries to market—and keep defects and costs as low as possible—you need to invest in a test automation practice that combines people, processes, and technology. However, to make that investment, you likely have to provide substantial justification to your executive leadership. It may seem like it takes significant effort to communicate a compelling return on investment (ROI), but with some straightforward calculations, you can easily present your case.

    In this session, learn how a hospitality industry leader, Caesars Entertainment, modernized their quality practice with test automation and effectively calculated their ROI to gain approval for the initiative. Learn how to deliver measurable value to the business with test automation through:

    - Best practices for creating a scalable end-to-end test automation strategy.

    - Key metrics to quantify the value of test automation.

    - ROI calculations for key stakeholders within the organization.
  • Deliver High Quality Software With the Right Automated Testing Solution Recorded: Feb 10 2021 45 mins
    Chris Colosimo, Parasoft Product Manager
    How do you test for software quality? If you’re looking to increase test coverage for your enterprise application, you must go beyond UI and manual testing. API testing is the most efficient test automation practice for identifying defects and ensuring a seamless customer experience. But there are many different approaches and tools available on the market. How do you get the ROI you’re looking for to achieve the automation necessary to deliver high quality software at the speed of Agile and DevOps?

    In this session, you’ll learn the essential capabilities required to build a sustainable API testing strategy that can be scaled across your organization. Explore these considerations for choosing the right API testing solution:
    - Learn about 5 key capabilities you need in your API testing solution.
    - Leverage AI and machine-learning to create and maintain API tests.
    - Create a collaborative workflow best suited for your organization.
  • Leverage Test Automation to Deliver Business and Quality Goals Recorded: Jan 28 2021 62 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft
    Whether you’re dealing with microservices, web services, or other complex application environments, you need a quality-first approach to successfully achieve business and technical goals. How confident are you in the quality of your software releases?

    Industry leaders Alaska Airlines, Caesars Entertainment, Fitch Solutions, Sabre, and ING with IOVIO optimized their software delivery processes and achieved quality goals with test automation.

    Join this webinar to learn more about how these industry leaders reached their quality goals using test automation technologies.

    Key takeaways:
    • Improve quality and increase code coverage with unit testing.
    • Maximize ROI with higher productivity using AI-powered API testing.
    • Reduce constraints from complex test environments with service virtualization.
  • Simplify REST API Testing Recorded: Jan 14 2021 59 mins
    Chris Colosimo, Parasoft Product Mgr & Wilhelm Haaker, Solutions Architect
    You already know that you need to work with REST APIs, but how are you testing to make sure that they are responding as you expect them to? They need to be secure and reliable as well as align with correct business rules. Your APIs may be used by multiple applications that are not tightly integrated.

    Before your applications go to production, you need to ensure that you’re getting the expected results from each API during your QA process. Here's the challenge: the further the APIs are from your application, the less you know about them. Complex API chains require intimate knowledge of the underlying business rules. You must make sure that the APIs you are integrating don’t compromise the quality of your application.

    Listen to this on-demand webinar to learn tips and techniques for making it easier to test your REST APIs using the Parasoft SOAtest automated testing environment, including:

    • REST API principles and testing priorities
    • Best practices for creating a scalable API testing process
    • A real-world demonstration of AI-powered test creation
  • 3 Key Steps for Effective Microservices Testing Recorded: Jan 13 2021 60 mins
    Chris Colosimo, Product Manager, Parasoft & Wilhelm Haaker, Solutions Architect
    Did you know that many of the same technologies and techniques used for testing other applications can be used to test microservices, even API testing? However, the challenge with microservices is the sheer volume of services and their web-like interdependencies, as well as understanding how to effectively monitor event flows.

    Let us help you tackle this challenge. Watch this webinar to learn the key steps to automate testing for orchestrated and reactive architectures, including how to:
    • Establish a process for testing synchronous and asynchronous event flows.
    • Monitor event flows to identify and trace messages for validation.
    • Use simulation to overcome manual steps in an automated test scenario.
  • Best Practices for Achieving Code Coverage Goals With JUnit Recorded: Oct 1 2020 66 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft & Brian McGlauflin, Sr Software Engineer, Parasoft
    Unit testing is a proven technique for ensuring delivery of high-quality Java applications. It has plenty of benefits if done well. A solid unit testing practice built with JUnit is fundamental for achieving code coverage, but it can be a struggle for many organizations to implement. It takes a focused effort to create, scale, and maintain an effective unit testing practice that minimizes coverage gaps and risky releases.

    In this webinar we discuss the challenges of unit testing. We show you how to effectively scale your JUnit testing practice across the organization, reducing the amount of time and expertise required to create and maintain stable test suites.

    Learn the steps to increase code coverage, including how to:

    • Implement best practices for creating meaningful and maintainable test cases.
    • Leverage parameterization and mocking frameworks to maximize test coverage.
    • Use smart test execution to get quick feedback on changes made to the code base.
    • Extend code coverage metrics to incorporate automated functional and UI test jobs.
  • Implement Test Traceability for Agile Development Teams Recorded: Apr 7 2020 63 mins
    Mark Lambert, VP Strategic Initiatives, Parasoft
    Traceability is considered an important part of a traditional software development process. If you’re using an Agile workflow, you may not know how to effectively incorporate it into your SDLC processes. It might feel like too much documentation that interferes with the sprint schedule - the Agile process doesn’t define all the requirements up front, but as you go sprint by sprint. 

    Watch this webinar to learn how to leverage automated testing and continuous testing to streamline traceability into your Agile workflow.
Parasoft
Parasoft

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Protect Applications With OWASP API Security Top 10 and SAST
  • Live at: Apr 22 2021 4:00 pm
  • Presented by: Sandy Carielli - Principal Analyst, Forrester Research and Arthur Hicken - Chief Evangelist, Parasoft
  • From:
Your email has been sent.
or close