Security Starts with Requirements


necessary to conduct exploratory security testing without adequate requirements.

Starting the software development project off with effective security requirements ensures that the quality assurance team will be able to address security in its project planning, during testing tool acquisitions, and in test coverage. With security requirements, team members can make educated decisions about the types of application security testing they are expected to conduct.

Early security testing planning provides quality assurance planners with insight into what portions of the security testing challenge are outside of their scope and need to be assigned to the security team, like network security and production environment configuration.


About the author

Jason Schmitt's picture Jason Schmitt

Jason Schmitt is group product manager for SPI Dynamics where he is responsible for overseeing product strategy and direction for the company's developer products. Jason has a long history of work expertise in product management, product development and technical consulting. He often contributes articles to industry publications on secure software development and is an expert resource for press. He has a Masters of Business Administration from Georgia State University and a Bachelor of Mechanical Engineering from the Georgia Institute of Technology.

AgileConnection is one of the growing communities of the TechWell network.

Featuring fresh, insightful stories, is the place to go for what is happening in software development and delivery.  Join the conversation now!