WhiteHat Scout
Overview: Scout is a SAST (Static Application Security Testing) product by WhiteHat built to enable developers to quickly and painlessly check for vulnerabilities in their code on a regular and ongoing basis, in a manner that fits in well with their agile work processes.
Users: Developers
Goal: Enable and encourage more developers to make security an early and on-going part of their development process.
What I did:
• Created wireframes based on research & requirements
• Worked closely with engineering team on implementation
• Conducted user interviews and testing to gather feedback
• Brainstormed with the team on how to improve adoption
What I learned:
• It’s hard to get users to change their behavior!
• Conducting quality and thorough user research at the beginning of the project is extremely vital. Had we done a better job with this, we would have learned early on about the hangups developers would have in using our product (for example, unable to get permission to upload confidential code onto an external website).