Related Content

Combination padlock for security Continuous Security in Agile Development

"Continuous" gets mentioned a lot in agile and DevOps, but one area that often doesn’t get enough attention is how to continuously build, test, and deliver secure applications. Just like for quality, you can’t test security in, so you need to have a plan for how to build it in. Here are some tips on how to do that.
Jeffery Payne's picture
Jeffery Payne
March 29, 2019
Two people creating a test strategy document The What, Who, and How of Developing a Test Strategy

In the world of agile, people often think of test strategy documents as outdated or unnecessary. But having a defined plan of action for how you're going to test a system, application, or business function is always useful. Here's how to break that down into what, who, and how so you can understand your tests' purpose.
Adam Satterfield's picture
Adam Satterfield Janna Loeffler
March 27, 2019
Illustration from Aesop's fable "The North Wind and the Sun" Aesop and Agile: A Moral for Effective Teamwork

When a manager sees a problem on their team, they often want to act quickly to correct it. But if you take a “fix it” mentality too far, while you might get past the initial impediment, you have done little to help the team work better in the future. Let's look at another approach, based on one of Aesop's Fables.
Steve Berczuk's picture
Steve Berczuk
March 26, 2019
Shift key on a computer keyboard Making the Switch from Quality Assurance to Quality Engineering

The quality engineering approach differs from QA in that quality teams partner with business users and product managers to better understand requirements and to catch problems as products are being built—not after the fact. There are two pillars to building a true quality engineering organization: culture and process.
Sumeet Mandloi's picture
Sumeet Mandloi
March 22, 2019
Robot playing a piano Robotic Process Automation in Software Testing

Robotic process automation (RPA) systems develop a list of actions to automate a task by watching a user perform that task in the application's GUI, and then repeating those tasks directly in the GUI. But RPA tools differ from other tools because they can handle data among multiple applications—including for testing.
Mukesh Sharma's picture
Mukesh Sharma
March 20, 2019
Developer writing code at his computer The Developer’s Role in Testing and Quality

Of course a developer's primary job is to produce good code, but there's also a lot they can do to contribute to quality and test their code before it gets to a tester. Code quality techniques help developers write better code, more thoroughly understand their changes, and avoid builds with many easy-to-find problems.
Justin Rohrman's picture
Justin Rohrman
March 15, 2019
Espresso being poured into a cup of water and mixing Integrating Threat Modeling into Agile Development

Threat modeling helps you determine where to focus your security testing efforts when building your app. But people often wonder how it can fit into their existing agile software development process. Here are three things you can do to integrate threat modeling into your agile workflow, either early on or mid-project.
Alan Crouch's picture
Alan Crouch
March 13, 2019
Asphalt with painted arrows pointing in three directions The Good, the Practical, and the Expedient

When a process isn't working, you'll have to make a choice that will help move things along. However, some choices are less about inspecting and adapting than about getting things done quickly, and that incurs risk. To manage this risk you need to be aware of the differences between "practical" and "expedient."
Steve Berczuk's picture
Steve Berczuk
March 12, 2019