• Presencial

ISTQB® Advanced Level – Security Tester

Com certificação

ISTQB Advanced Level – Security Tester


With the ever-increasing numbers of security breaches, both human and machine-based, significantly more understanding is required from testers to ensure that the proper quality assurance measures are in place for assuring the security of IT systems.

The ISTQB Advanced Level Security Tester is an internationally recognised qualification that will help you better understand security testing as well as execute it. This course will help you plan, perform and evaluate security tests from a variety of perspectives, including policy-based, risk-based, standards-based, requirements-based and vulnerability-based. It will also prepare for the  ISTQB Certified Tester, Advanced Level – Security Tester Exam.

Exame de Certificação incluído. O exame será realizado no último dia do curso.
Esta formação é ministrada em Inglês.

Em parceria com a entidade acreditada:

ISTQB® Advanced Level - Security Tester 1 Rumos, Formação e Serviços em Tecnologias da Informação

Destinatários

The Advanced Level Security Tester qualification is aimed at people who have already achieved an advanced point in their careers in software testing and wish to develop further their expertise in security testing. The modules offered at the Advanced Level cover a wide range of testing topics.

Pré-requisitos

To receive Advanced Level certification in the module “Security Tester”, candidates must hold a valid Certified Tester Foundation Level certificate and have sufficient practical experience to be certified at Advanced Level, which should be not less than 3 (three) years of relevant academic, practical, or consulting experience. Refer to the relevant Exam Board to determine the specific practical experience criteria.

Objetivos

  • Plan, perform and evaluate security tests from a variety of perspectives.
  • Evaluate an existing security test suite and identify any additional security tests needed.
  • Analyze a given set of security policies and procedures, along with security test results, to determine effectiveness.
  • For a given project scenario, identify security test objectives based on functionality, technology attributes and known vulnerabilities.
  • Analyze a given situation and determine which security testing approaches are most likely to succeed in that situation.
  • Identify areas where additional or enhanced security testing may be needed.
  • Evaluate effectiveness of security mechanisms.
  • Help the organization build information security awareness.
  • Demonstrate the attacker mentality by discovering key information about a target, performing actions on a test application in a protected environment that a malicious person would perform, and understand how evidence of the attack could be deleted.
  • Analyze a given interim security test status report to determine the level of accuracy, understandability, and stakeholder appropriateness.
  • Analyze and document security test needs to be addressed by one or more tools.

Programa

  • The Basis of Security Testing
  • Security Testing Purposes, Goals and Strategies
  • Security Testing Processes
  • Security Testing Throughout the Software Lifecycle
  • Testing Security Mechanisms
  • Human Factors in Security Testing
  • Security Test Evaluation and Reporting
  • Security Testing Tools
  • Standards and Industry Trends

 

The Basis of Security Testing

  • Security Risks
  • Information Security Policies and Procedures
  • Security Auditing and its Role in Security Testing

Security Testing Purposes, Goals and Strategies

  • The Purpose of Security Testing
  • The Organizational Context
  • Security Testing Objectives
  • The Scope and Coverage of Security Testing Objectives
  • Security Testing Approaches
  • Improving the Security Testing Practices

Security Testing Processes

  • Security Test Process Definition
  • Security Test Planning
  • Security Test Design
  • Security Test Execution
  • Security Test Evaluation
  • Security Test Maintenance

Security Testing Throughout the Software Lifecycle

  • Role of Security Testing in a Software Lifecycle
  • The Role of Security Testing in Requirements
  • The Role of Security Testing in Design
  • The Role of Security Testing in Implementation Activities
  • The Role of Security Testing in System and Acceptance Test Activities
  • The Role of Security Testing in Maintenance

Testing Security Mechanisms

  • System Hardening
  • Authentication and Authorization
  • Encryption
  • Firewalls and Network Zones
  • Intrusion Detection
  • Malware Scanning
  • Data Obfuscation
  • Training

Human Factors in Security Testing

  • Understanding the Attackers
  • Social Engineering
  • Security Awareness

Security Test Evaluation and Reporting

  • Security Test Evaluation
  • Security Test Reporting

Security Testing Tools

  • Types and Purposes of Security Testing Tools
  • Tool Selection

Standards and Industry Trends

  • Understanding Security Testing Standards
  • Applying Security Standards
  • Industry Trends

ISTQB® Advanced Level – Security Tester

Área

Dados

Como chegou até nós

Os seus dados pessoais são recolhidos em conformidade com o Regulamento Geral de Proteção de Dados (RGPD).
Consente que os seus dados sejam utilizados, nos termos da nossa Politica de Privacidade, para o contacto/envio de:

Ações de informação, de marketing de produtos e serviços, como campanhas e eventos?

Para mais informações, consulte a Política de Privacidade do Grupo Rumos.
pode retirar o seu consentimento a qualquer momento através do botão Cancelar subscrição ou Unsubscribe que estão presentes em cada comunicação enviada, bem como exercer os direitos descritos na politica de privacidade

Para a subscrição da newsletter deverá desativar o bloqueio de pop-ups do seu browser.