My personal challenge of the year,| A Tester's Journey
Deliberate practice proved being invaluable in my own career. The last months showed me once again that this applies to the field of security just as well.| A Tester's Journey
When one of my former managers commented on my blog post on Painless Usable Security, asking about our approach of keeping dependencies up to date, I realized that there's more to the topic and I should write a separate post about it. So here it is!| A Tester's Journey
When I started out my| A Tester's Journey
The first time I heard about security champions programs was from Tanya Janca and the idea stuck with me ever since. If you haven't come across this concept yet, here are a few good resources on it.| A Tester's Journey
Imagine security being painless, easily usable and just the usual way we do things. Imagine this| A Tester's Journey
Input validation is a topic that's been following me around for years. I've came across countless resources speaking about the importance of input validation, or input filtering as it's called at times. What stuck with me is the recommendation to validate any input coming from any source, no matter if we're speaking about third parties, public interfaces we offer ourselves, internal services behind a firewall or accessible only from inside a private cluster. No matter if the input comes via c...| A Tester's Journey
A blog about learning, agile product development and software testing.| www.lisihocke.com
A blog about learning, agile product development and software testing.| www.lisihocke.com