Sara Martinez Giner

SDET Lead - Telefonica Tech, Spain

It is a reality that cyberattacks are increasing tremendously. Informally, firms can be divided into two categories: those that have suffered a cyberattack and those that are going to suffer it. Therefore, how can testers like us contribute in this harsh environment? Can we really prevent certain critical scenarios without being cybersecurity experts?

To start, I’ll review and explain some recent media cyberattacks. This introduction will be crucial to understand the main vulnerabilities and risks that our products are going to be exposed throughout the course of their lifetime. It is clear that at this point, as testers, we need to take action. Based on this, automation and tool integration will be required during the Secure Software Development Life Cycle (SSDLC).

I will include tips, examples, tools and a demo to show how such work environments will provide the teams agility, expertise and, ultimately, simplify some certification processes for their products in major standards like ISO 27001.

With all of that information at hand, and using our testing expertise on different new skills and tools, a few mitigations will be developed in order to encourage the usage of static code analysis to find vulnerabilities, find some data sets to force critical use cases, etc. In other words, lead a cybersecurity culture and strategy in our team.

What you will Learn

1. OWASP
2. Security Testing Tools
3. Security Culture

Join Europe’s biggest testing event! If you enjoyed this content, get ready for a mind-blowing experience in person. EuroSTAR Conference is 4 days off learning from expert speakers, bold ideas, real insights and powerful connections.

And if you work in Test Automation, join your peers at AutomationSTAR. This is the conference where the brightest minds shape the future of quality engineering, with 2 action packed days of hands-on learning.