The Best Online Cybersecurity Training in the World - SANS OnDemand


To attend this webcast, login to your SANS Account or create your Account.

Security is QA: My Path from Developer to Pen Tester

  • Friday, February 16th, 2018 at 3:30 PM EST (20:30:00 UTC)
  • Joshua Barone
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


Web Application Development is a craft, and like all craftsman I sought to produce the highest quality code I could as well as help the other developers around me produce higher quality code as well. I worked on my coding skills diligently and never stopped learning or practicing. And eventually I got my first introduction into the world of web application security. It was this that started me down a path of realizing that security and secure coding practices are an integral part to code quality. In this presentation, I will share my journey from developer to penetration tester, while pointing out the important lessons learned along the way. I will also be sharing tips an tools to help practice and hone your skills as well.

Speaker Bio

Joshua Barone

Joshua Barone is a software developer and web application penetration tester, or as he would call himself, a code monkey and security aficionado. Over the course of his career, he has developed in numerous languages on multiple platforms using a plethora of tools and frameworks along the way. Along the way, Joshua found and fell in love with the world of information security, which lead Joshua to find a focus on application security, particularly itís design and development practices. This interest led to Joshua earning his Masters in Computer Science as well as a collection of professional certifications (CISSP, GSEC, GCIA, GCIH, GWAPT, GPEN). He currently applies his craft to the development of digital forensics software with BlackBag Technologies. As well as providing third party web application penetration tests, because hacking is fun. Joshua Barone is currently a Community Instructor for the SANS Institute.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.