QA Commandments: 10 Must-follow security practices to secure your web apps

In today’s digital landscape, QA isn’t just about making sure things work - it’s also about keeping things safe. Functional bugs can cause headaches, but security bugs can cost trust, damage reputations, and threaten the entire business.
This session is designed to help QA professionals step confidently into the world of security without needing to be experts. You’ll walk away with practical, real-world tactics you can start using right away - from validating inputs and securing APIs to spotting data leaks early.
We’ll break down the 10 QA Security Commandments every tester should follow, with real examples, tool suggestions, and tips for making security a seamless part of your workflow. It’s all about shifting left, thinking like a hacker, and becoming your product’s most powerful line of defence.

Key takeaways:
1. Security is not a responsibility only to the SecOps team
2. Think like an attacker
3. 10 Commandments by QA for improved web app security 
4. Tools that can be helpful in ensuring the security of your web apps
5. QA Security Maturity Model
6. A checklist that will help everyone in the team to perform (basic) security tests
7. Final inspiration