22nd April | Saturday | 10:30 AM IST
Learn about Web APIs & Managing the Product security program
DATE: 22nd April 2023
TIME: 10:30 AM- 1 PM IST
VENUE: TBD
Meetup Begins in
Session #1: Web APIs for Testers
As a tester we must understand what are the different API types like request response/event driven apis and their typical use cases. Will provide a brief of major api paradigms like REST, gRPC, GraphQL. If time permits also can cover stream api like Kafka.
Key Takeaways:
- Types of APIs (request/response vs Event Driven)
- How they are different from each other
- Typical use cases
About Speaker
Kowshik Chakraborty
Lead Consultant - QA at ThoughtWorks
Session 2 Use of Liberating structures in Software testing
The talk will cover 4 liberating structures which will be useful in generating test ideas, and reporting bugs efficiently.
Key Takeaways:
Introduce the audience to liberating structures
Give ideas on how to use the liberating structures
Discussion on real examples from the audience
About Speaker
Ashwin Kumar S
QA architect at Bridgetree
Ashwin is a learner of testing for the past 11+ years. He has experience across health care, mortgage, and retail domains. He currently works as a QA architect at Bridgetree.
Previous Chennai Meetups
A seasoned Software Testing professional and a continuous learner with 18+ years of experience in developing, building, and leading test teams to deliver successfully to the market in coordination with cross functional/geographic teams. Expertise includes
backend API automation , performance testing, accessibility testing and project management . Worked for organisations like Veritas, Vmware and Mindtree. Currently working in Thoughtworks as Lead Consultant -QA.
Session #2: Managing the Product security program and playing the pentester in DevSecOps team
The agenda of the talk:
- Structuring Secure SDLC
- Engage with stakeholders
- Introducing the drivers of security: Competing imperatives of application team and application security team
- Environmental considerations
- Building blocks and stages of DevSecOps
Integration of appsec into DevSecOps:
- Playing the pentester in DevSecOps team
- How the concept of red – blue team or rather purple team can plan an effective role
Process laydown for appsec program:
- The role of Communication, flow of information, awareness, evangelism along with technical capabilities
About Speaker
Ankit Giri
Tech Lead - Security | DevSecOps at Tavisca
A complete tech enthusiast always seeking experience with new technologies, Ankit Giri is an expert in application security, specialising primarily in web application and mobile application security. He is currently an Tech Lead – Security in DevSecOps practice in JPMorgan Chase & Co.
Prior to working with JPMorgan Chase & Co. His professional experience in the field includes speaking, presenting, and blogging, with a diverse background in writing informational blogs.
Ankit has presented his research in different conferences including BSides, RSA, and national seminars, and Owasp & null chapter, Test Tribe and Peerlyst meetups on the following topics:
Cloud Security & Best Practices in AWS, Ineluctable weakness of logical vulnerabilities, Pwning Windows Mobile Applications, IoT Security Risks & Challenges, Application of Machine Learning in Criminal Profiling, Pentesting Mobile Applications.
Ankit has also taken hands-on sessions on Securing AWS environments at null Bachaav. He has presented and demonstrated getting started with AWS at Fore School of Management.
Ankit has expertise as a penetration tester, and OWASP Top 10 Vulnerability understanding, detection, and remediation.
He is a Bug Bounty enthusiast and has been featured in the Hall of Fame of EFF, GM, PagerDuty, Sony, AT&T, HTC, Mobikwik, and many others.
That’s it? No. We Got Many More Remarkable Opportunities:
- To meet like-minded people
- Conversations with other testers
- Discussion on impressive testing tools & topics
- Talking about the challenges facing as a testers
- Quick chat opportunity, where one can speak out about testing for 100 seconds
- Chat over some quick bites with a cup of coffee/tea.
About ‘The Test Tribe Community’
The Test Tribe is a leading global Software Testing Community (proudly Asia’s Largest) turned EdTech Startup. Started in 2018 with a mission to give Testing Craft the glory it deserves while we co-create Smarter, Prouder, more confident Testers.
We take pride in creating unique global Events, Online Community spaces, and eLearning platforms where Software Testers across the globe collaborate, learn and grow.
With around 220 Software Testing Events like Conferences, Hackathons, Meetups, Webinars, etc., and with other Community initiatives, we have reached a global footprint of over 70K+ Testers.
We intend to be a one-stop destination of choice for Testers across the globe for their upskilling and community needs.