Scaling Static Analysis Reviews and Deployments


Why

Static Analysis Security Testing (SAST) is a key element in making AppSec practices scale for companies with multiple development teams.

What

The challenges to discuss in this Working Session include the following:

  • How to scale the deployment of SAST
  • How to onboard new applications
  • Parsing and filtering results
  • Customising rules
  • Presenting findings in developer’s IDEs

It is also important to discuss using SAST to provide a security benchmark for applications, websites, and IoT devices.

Outcomes

  • Guidelines for using SAST in companies with multiple development teams

Who

The target audience for this Working Session is:

  • AppSec professionals
  • SAST service providers
  • Consulting companies
  • Standards bodies

Working materials

  • Draft guidelines for using SAST in companies with multiple development teams (please add as much information as possible before the sessions)

Content

…add content…

Related Working Session(s)



Back to list of all Working Sessions and Tracks

Edit this page here