In a forthcoming tip I’ll cover what developers can and should be doing to get on board with security. In this tip I’ll share what quality assurance (QA) analysts, engineers and testers can do to reduce business risks in this capacity.
As with developers, security managers and IT auditors, QA professionals have a very important role in the information security process. As an aspect of overall quality, it’s part of your responsibility to ensure that code is secure before it goes into production. This fact alone validates that your role is arguably the most important among everyone involved. No pressure.