Pole Vaulting over Agile Security Pits presented at BSidesVienna 2015

by Daniel Liber,

Summary : Talking about Agile security has been going on for 10 years or so now, including best practices, guidelines, what to do, etc. I am here from the other side of the map, after trying to implement several practices - obviously some didn't work - and I wanted to share my experience of the areas where most Agile practices will hold back security.
This 'pits' are common across organizations and enterprises, so there is advice to go around for everyone.