fbpx

ISTQB Advanced Level – Security Tester

A definir
A confirmar
A confirmar
Chat

With the ever-increasing numbers of security breaches, both human and machine-based, significantly more understanding is required from testers to ensure that the proper quality assurance measures are in place for assuring the security of IT systems.

The ISTQB Advanced Level Security Tester is an internationally recognised qualification that will help you better understand security testing as well as execute it. This course will help you plan, perform and evaluate security tests from a variety of perspectives, including policy-based, risk-based, standards-based, requirements-based and vulnerability-based. It will also prepare for the  ISTQB Certified Tester, Advanced Level – Security Tester Exam.

 

Exame

Exame de certificação incluído.

Conheça os prazos limite para realização do exame de certificação.

Contacte-nos, caso tenha alguma específica sobre os exames.

 

Esta formação é ministrada em Inglês.

Em parceria com a Rumos e com a entidade acreditada:

Logo WT e1573548386345 Galileu by  Innowave Logo Galileu

Objetivos
  • Plan, perform and evaluate security tests from a variety of perspectives.
  • Evaluate an existing security test suite and identify any additional security tests needed.
  • Analyze a given set of security policies and procedures, along with security test results, to determine effectiveness.
  • For a given project scenario, identify security test objectives based on functionality, technology attributes and known vulnerabilities.
  • Analyze a given situation and determine which security testing approaches are most likely to succeed in that situation.
  • Identify areas where additional or enhanced security testing may be needed.
  • Evaluate effectiveness of security mechanisms.
  • Help the organization build information security awareness.
  • Demonstrate the attacker mentality by discovering key information about a target, performing actions on a test application in a protected environment that a malicious person would perform, and understand how evidence of the attack could be deleted.
  • Analyze a given interim security test status report to determine the level of accuracy, understandability, and stakeholder appropriateness.
  • Analyze and document security test needs to be addressed by one or more tools.

Destinatários

The Advanced Level Security Tester qualification is aimed at people who have already achieved an advanced point in their careers in software testing and wish to develop further their expertise in security testing. The modules offered at the Advanced Level cover a wide range of testing topics.

Pré-Requisitos

To receive Advanced Level certification in the module “Security Tester”, candidates must hold a valid Certified Tester Foundation Level certificate and have sufficient practical experience to be certified at Advanced Level, which should be not less than 3 (three) years of relevant academic, practical, or consulting experience. Refer to the relevant Exam Board to determine the specific practical experience criteria.

Programa

  • The Basis of Security Testing
  • Security Testing Purposes, Goals and Strategies
  • Security Testing Processes
  • Security Testing Throughout the Software Lifecycle
  • Testing Security Mechanisms
  • Human Factors in Security Testing
  • Security Test Evaluation and Reporting
  • Security Testing Tools
  • Standards and Industry Trends

The Basis of Security Testing

  • Security Risks
  • Information Security Policies and Procedures
  • Security Auditing and its Role in Security Testing

Security Testing Purposes, Goals and Strategies

  • The Purpose of Security Testing
  • The Organizational Context
  • Security Testing Objectives
  • The Scope and Coverage of Security Testing Objectives
  • Security Testing Approaches
  • Improving the Security Testing Practices

Security Testing Processes

  • Security Test Process Definition
  • Security Test Planning
  • Security Test Design
  • Security Test Execution
  • Security Test Evaluation
  • Security Test Maintenance

Security Testing Throughout the Software Lifecycle

  • Role of Security Testing in a Software Lifecycle
  • The Role of Security Testing in Requirements
  • The Role of Security Testing in Design
  • The Role of Security Testing in Implementation Activities
  • The Role of Security Testing in System and Acceptance Test Activities
  • The Role of Security Testing in Maintenance

Testing Security Mechanisms

  • System Hardening
  • Authentication and Authorization
  • Encryption
  • Firewalls and Network Zones
  • Intrusion Detection
  • Malware Scanning
  • Data Obfuscation
  • Training

Human Factors in Security Testing

  • Understanding the Attackers
  • Social Engineering
  • Security Awareness

Security Test Evaluation and Reporting

  • Security Test Evaluation
  • Security Test Reporting

Security Testing Tools

  • Types and Purposes of Security Testing Tools
  • Tool Selection

Standards and Industry Trends

  • Understanding Security Testing Standards
  • Applying Security Standards
  • Industry Trends
Chat

Quero saber mais informações sobre este curso

ISTQB Advanced Level – Security Tester

ISTQB | 21h


Notas

Pretende mais informação sobre este curso?

Preencha o formulário com os seus dados e as suas questões e entraremos em contacto consigo para lhe darmos todas as informações pretendidas.

Obrigado!