”Since the QA process is conducted outside of the development team, defects and security risks are more likely to be uncovered. This outsider’s perspective helps teams create testing scenarios that consider the entire threat landscape and account for various use cases. It allows QA to ask the right questions of the developers, owners, and customers to ensure all requirements are met.” Peter Hesse – Chief Security Officer at 10Pearls
Source: 10 Pearls
About Peter Hesse
For nearly two decades, Peter has leveraged his passion for technology and experience in security to develop successful solutions to interesting problems.
From an exciting start developing the reference implementation of a standards-based certification authority for the National Institute of Standards and Technology (NIST), to overcoming obstacles and successfully demonstrating the system that formed the basis of the Federal PKI, Peter has built his reputation tackling complex challenges and explaining them to others.
Peter founded and ran the successful information security consulting firm Gemini Security Solutions for over a dozen years. He now focuses on avoiding the common break/fix mentality around security, and instead finding ways to architect and build security into systems and products