Hi Team,
I am currently working as a Quality Analyst in ServiceNow and I am looking to transition into a Security Analyst role.
I have a few queries regarding DevSecOps, SIR, and AVR, particularly on how to gain both theoretical knowledge and hands-on experience in areas like:
SAST (Static Application Security Testing)
SCA (Software Composition Analysis)
DAST (Dynamic Application Security Testing)
RASP (Runtime Application Self-Protection)
IAST (Interactive Application Security Testing)
Could anyone guide me on the best learning roadmap and share useful resources or links to get started?
