Continuous Integration and Continuous Deployment (CI/CD) has become a must for many progressive organizations, and SAMI’s OpenCloud team is not an exception. While we are a part of a very big global company called Samsung, OpenCloud Dev and Security teams are rather small; the tasks and mission that we're trying to accomplish are anything but.
Come to our presentation to learn about our way of automating security that we dubbed as Threadfix-Centric Application Security Architecture. You will learn in this session:
1. Why and how the traditional approach to AppSec needs to be changed.
2. Why security testing is not the same as QA testing.
3. What requirements we considered when choosing tools and building security automation framework.
4. Why Threadfix is not just yet another security dashboard.
5. What is the making of security.
Finally, as a bonus we'll tell you how to use QA regression tests for even better coverage in AppSec testing.
Watch the Talk Video