July 2018
Intermediate to advanced
356 pages
9h 18m
English
Content preview from Hands-On Security in DevOps
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Stage 2 – building a security testing team
In this stage, the business is getting stable and mature. The organization may set up a security testing team who is in charge of application security verification before release and continuous environment vulnerability monitoring. The development team may heavily rely on the security testing team for security defects and issues. The development team is only focused on the business's functional development, and not yet involved with the secure design or secure coding.
Dedicated security testing may start to use some security automation testing or open source monitoring tools. Developers are learning secure coding through identified security defects case by case, and still haven't adopted any formal ...