Security in the Delivery Pipeline

James Wickett | GOTO Amsterdam 2017


Security testing is often relegated to the end of software delivery to the detriment of quality and safety. Often security gets aligned with compliance timelines or other long-cycle process inside an organization. This session is complete reversal of the status quo and we will cover modern approaches to security in your CI/CD pipelines.

You will gain experience with some of the testing tools and processes needed to make this happen. We will also cover some advice for dealing with compliance and security engineers as you make a transition to TDD-style approach to security.

About the speakers