MAIN TRACK TALK

Make a fearless start with security testing

Security (secure development) is very important for most organizations, yet few testers dare to touch it. Learn the basics so you can assist specialized security testers.

Security testing can feel like a daunting task. It’s a test specialty, and often an afterthought. Testers and test automation engineers won’t replace security testers but can prevent many of the most common security vulnerabilities. Learn about the most common security vulnerabilities according to the OWASP top 10. How do these common vulnerabilities work and why do bad actors want to exploit them? Learn to design applications that an unskilled bad actor can’t crack. Support your team in making the right decisions throughout the application life cycle. And, of course, testing the security of applications. Learn how to security-test forms, find known vulnerabilities in dependencies, test API authorization, and more. To be able to do all these things you need knowledge about common vulnerabilities and the various types of tools that can detect them. In this talk you’ll learn about these tools and when to use them.

What you’ll learn

Session details

Sander van Beek

Sander is a technical tester that focuses on automation. To him, a test worth doing, is also worth automating. He combines his technical expertise with the human and organizational sides of testing. Technical solutions are great, but the bigger challenge is making people use those solutions at scale. Sander thinks it’s fun to create something new. To him, complexity is fun and more complexity is more fun.