risk management | TechWell

risk management

A tester going over software code 8 Questions to Ask before Fixing a Defect

Some defects require a fix, without a doubt. But not all defects are created equal, so careful thought should be applied before a defect is fixed. The goal isn’t to fix every reported defect; it’s to return value to the customer and profit to the company. These eight questions can help in the decision-making process.

Richard Estra's picture
Richard Estra
Chainlink fence Continuous Risk Management in Cybersecurity

Traditional cybersecurity is reactive. It responds to threats as they surface while trying to minimize the chance they will ever be an issue. Yet in an environment of constant change and evolution, this is insufficient. What your business needs to do is approach cybersecurity from the perspective of continuous risk.

Max Emelianov's picture
Max Emelianov
Spare tire on an off-roading vehicle Making (and Keeping) Project Risk Visible

Project managers recommend how much should be invested to address various risks based on their understanding of project context, but the final decision about what to do and when those efforts are sufficient belongs to the sponsor. Risk management requires executive input, so sponsors need to see all risk data you have.

Payson Hall's picture
Payson Hall
SecOps team member touching a security icon on a screen 5 SecOps Challenges and How to Overcome Them

SecOps, or security operations, is a collaboration between information security and IT operations to keep a company’s data secure and reduce risk, all while maintaining agile timelines. But it can be difficult to start. Here are five challenges you should address to ensure your SecOps implementation is successful.

Gilad David Maayan's picture
Gilad David Maayan
Icon of a person throwing garbage into a trash can Trusting Your Data: Garbage In, Garbage Out

Poor quality input will always produce faulty output. Improper validation of data input can affect more than just security; it can also affect your ability to make effective business decisions. Bad data can have impacts on how you make quantitative decisions or create reports, if you can’t trust the data you receive.

Alan Crouch's picture
Alan Crouch
Shachar Schiff Security Testing and Assessing Risk: A Slack Takeover with Shachar Schiff

Thought leaders from the software community are taking over the TechWell Hub to answer questions and engage in conversations. Shachar Schiff, founder and principal consultant at BadTesting, hosted this Slack takeover and discussed assessing code coverage like a risk analyst, risk assessments outside security, and more.

Kelly McGee's picture
Kelly McGee
Highway with free-flowing traffic Lower Risk of Downtime by Testing with Production Traffic

Teams need a means of identifying potential bugs and security concerns prior to release—with speed and precision, and without the need to roll back or stage. By simultaneously running live user traffic against the current software version and the proposed upgrade, you can detect bugs while reducing risk and downtime.

Robert Ross's picture
Robert Ross
Chess king standing after all other chess pieces have been captured Take Credit for Your Risk Management Activities

If you have an important implementation date, early identification of the minimum viable product is a vital risk-management step that helps focus your team’s attention on what's important. Rather than apologizing for intelligent phasing of functionality to manage risk, explain it to stakeholders and take credit.

Payson Hall's picture
Payson Hall