Security for non-security testers

How you as a non-security tester can contribute to a more secure web for all

Security needs to be the responsibility of the whole team

Modern software development with rapid-release cycles calls for a different approach to security. With autonomous teams shipping code to production several times a day, we can no longer depend exclusively on external security audits. Instead, the whole team needs to work with security. Scanning for vulnerabilities, monitoring production and performing penetration tests are important, but it is not enough. This presentation will give practical tips for how you as a non-security tester can contribute and ensure that your application is as secure as possible. You will learn how you can utilize domain knowledge to find security flaws and how to identify the areas of your application where the errors are most likely to be found.

Related Sessions


  • Tutorial
  • Keynote
  • Talk
  • Workshop
  • Combo
  • Bonus
  • Active
  • Social

Full-Day Tutorial (6-hour Workshop)

9:00 a.m. – 5:00 p.m. F-,E- & D-Rooms

25-minute Talk

online session
10:45 a.m. – 11:30 a.m. Room F3 - Track 3: Talks

105-minute Workshop

10:45 a.m. – 12:30 p.m. Room D5+D6 - Track 7: Workshops

25-minute New Voice Talk

online session
10:45 a.m. – 11:30 a.m. Room F1 - Track 1: Talks

If you like the Agile Testing Days Conference you might also like: