HemSök efter kurserISTQB Advanced Security Tester

ISTQB Advanced Security Tester

With the ever-increasing numbers of security breaches, both human and machine-based, significantly more understanding is required from testers to ensure that the proper quality assurance measures are in place for assuring the security of IT systems. This intensive four-day course contains lectures, exercises and practical work to describe and illustrate best practices in security testing.


Utbildningsformer
Remote

Längd
4 dagar

Pris

Who is it for?

The ISTQB Advanced Security course is for Technical Testers, Security Testers, Security Co-ordinators and Managers, plus testers and test managers who are serious about including security aspects into their test plans or who want to specialise.

Prerequisites

  • A Certificate at ISTQB Foundation level must have been awarded for candidates to sit this course
  • It is recommended that candidates have at least three-years testing experience before attempting the course and exam.

Outline: ISTQB Advanced Security Tester

Module 1 - The Basis of Security Testing

  • Security Risks
  • Information Security Policies and Procedures
  • Security Auditing and Its Role in Security Testing.
  • Security Testing Approaches
  • Improving the Security Testing Practices
  • ISTQB Advanced Security Tester Certification Course.

Module 2 - Security Testing Purposes, Goals and Strategies

  • Introduction
  • The Purpose of Security Testing
  • The Organizational Context
  • Security Testing Objectives
  • The Scope and Coverage of Security Testing Objectives

Module 3 - Security Testing Processes

  • Security Test Process Definition
  • Security Test Planning
  • Security Test Design
  • Security Test Execution
  • Security Test Evaluation
  • Security Test Maintenance

Module 4 - Security Testing Throughout the Software Lifecycle

  • Role of Security Testing in a Software Lifecycle
  • The Role of Security Testing in Requirements
  • The Role of Security Testing in Design
  • The Role of Security Testing in Implementation Activities
  • The Role of Security Testing in System and Acceptance Test Activities
  • The Role of Security Testing in Maintenance.

Module 5 - Testing Security Mechanisms

  • System Hardening
  • Authentication and Authorization
  • Encryption
  • Firewalls and Network Zones
  • Intrusion Detection
  • Malware Scanning
  • Data Obfuscation
  • Training.

Module 6 - Human Factors in Security Testing

  • Understanding the Attackers
  • Social Engineering
  • Security Awareness.

Module 7 - Security Test Evaluation and Reporting

  • Security Test Evaluation
  • Security Test Reporting.

Module 8 - Security Testing Tools

  • Types and Purposes of Security Testing Tools
  • Tool Selection.

Module 9 - Standards and Industry Trends

  • Understanding Security Testing Standards
  • Applying Security Standards
  • Industry Trends.