Explore a comprehensive conference talk that delves into integrating security testing into product testing strategies. Learn how commercial software products utilize formal test strategies and plans to ensure software meets requirements and functions properly. Discover the differences between traditional quality assurance approaches and security testing methods. Gain insights into security maturity, quality maturity, and how security teams can adopt more structured testing frameworks. Examine topics such as clickjacking, acceptance criteria, input validation, and compatibility with DevOps practices. Understand how to develop effective test strategies that incorporate both quality assurance and security considerations, ultimately improving the overall software development lifecycle.