ISTQB Security Tester Certificate
Want to develop your expertise in security testing? In this ISTQB® Security Tester course, you will learn how to plan, perform and evaluate security tests from a variety of perspectives, including policy, risk, standards, requirements and vulnerability.
By the conclusion of ISTQB Security Tester, you will be able to align security test activities with project lifecycle activities, and analyse effectiveness of risk assessment techniques. You will also be able to determine the best security test tools based on specified needs
Target audience:
ISTQB Security Tester Certificate is designed for:
- Experienced Testers wanting to differentiate themselves with skills in security testing.
- Security Testers wanting to advance and align their skills with industry best practice.
- Security Testers wanting to accredit their security testing skills for recognition among employers, clients and peers.
Prerequisites:
Candidates wishing to participate in the ISTQB Security Tester couse must possess the ISTQB Foundation Level certification (or higher), some experience in technical testing, and a level of exposure to security testing.
About Sue Atkins
As a self-confessed bug-magnet, quality advocate and risk nut, Sue Atkins has been active in the world of software testing and process improvement for over thirty years.
She has experience of software development from both the waterfall and Agile perspectives across a diverse range of sectors – from banking and telecoms to healthcare and retail.
Sue has a passion for training and loves to help others grow their skills in all dimensions of testing, quality and process improvement. She has spoken at a number of conferences, is co-chair of the Scottish Testing Group and was a member of the programme committee for EuroSTAR 2022 – Europe’s largest Testing Conference.
- Plan, perform and evaluate security tests from a variety of perspectives.
- Evaluate an existing security test suite and identify any additional security tests needed.
- Analyse a given set of security policies and procedures, along with security test results, to determine effectiveness.
- For a given project scenario, identify security test objectives based on functionality, technology attributes and known vulnerabilities.
- Analyse a given situation and determine which security testing approaches are most likely to succeed in that situation.
- Identify areas where additional or enhanced security testing may be needed.
- Evaluate effectiveness of security mechanisms.
- Help the organisation build information security awareness.
- Demonstrate the attacker mentality by discovering key information about a target, performing actions on a test application in a protected environment that a malicious person would perform, and understand how evidence of the attack could be deleted.
- Analyse a given interim security test status report to determine the level of accuracy, understandability, and stakeholder appropriateness.
- Analyse and document security test needs to be addressed by one or more tools.
- The Basis of Security Testing
- Security Testing Purposes, Goals and Strategies
- Security Testing Processes
- Security Testing Throughout the Software Lifecycle
- Testing Security Mechanisms
- Human Factors in Security Testing
- Security Test Evaluation and Reporting
- Security Testing Tools
- Standards and Industry Trends
The exam is included in the training.
The ISTQB Security Tester exam is conducted online, comprised of 45 multiple choice questions, with a pass mark grade of 65% to be completed within 120 minutes.
Participants that take the exam not in their spoken language, will receive additional 25% time, and will have 30 minutes more, or a total of 150 min.
Please visit the iSQI websites for more information on how to book your online exam.