expand "how to hire appsec"

[DinisCruz]

"ability to write Tests in TTD (with CI workflow) is more important than the language"

see thread https://twitter.com/zeroXten/status/786356626060087296

[davevs]

On a higher level you can even argue that being able to define evil user stories and undesired functional test cases is what it's all about. The actual creation can be left to test automation experts, possibly creating a champion in the process.

[DinisCruz]

yes but I find that being able to write tests is quite important since it will expose that person to a lot of the dev workflows

related to the idea Using tests to communicate