ISTQB® Certified Tester, Advanced Level – Security Tester (International Edition)

ISTQB Platinum Partner
Provided by the biggest QA Academy in Portugal,
now available in Live Training, 100% remote!

About the Course

In today’s online world, organisations are vulnerable. As more and more services become connected and available, the security risk increases. For example, in 2016 upwards of 3.5 billion records were stolen from organisations.

However, security is not just securing the technology. It encompasses the people within an organisation and the processes they follow. It covers physical security, social engineering, tools and techniques and, importantly, an understanding of the ‘mindset’ of malicious users.

The ISQTB Advanced Level Security Tester provides attendees with a range of security testing tools, techniques and processes, built on the experience of the SQS Security Testing team. You might even learn to pick a lock or two…

“How does Security Testing add value to organizations?

In today’s interconnected world with consumers depending all the more on online channels to make transactions, any security breaches, however major or minor it may be, leads to loss in customer confidence and ultimately revenue. Further, the security attacks have also grown exponentially, both in quality as well as impact potential. In such a scenario, security testing is the only discipline that helps an organization identify where they are vulnerable and take the corrective measures to prevent as well rectifies the gaps in security. More and more organizations are getting the security audits done and testing measures in order to ensure that their mission i.e. critical applications are shielded from any breaches or unintended penetration. The more extensive an organization’s security testing approaches are, the better are its chances of succeeding in an increasingly threatening technology landscape.

Data security measures enable an organization to avoid the pitfalls arising from accidental disclosures of sensitive data. Many times, such leakages cost organizations dearly, on account of legal complications arising due to sensitivity of information. Data security measures reduce the compliance cost by simplifying data audit mechanisms and automating them. They also enable the organization to ensure integrity of data by preventing unauthorized usage and modifications. In today’s well connected world, adoption of robust data security processes and methodologies also ensure that the organization is well aligned to the legal and compliance standards across countries – a key decisive factor when it comes to operating across continents.”


Requirements Engineers, Functional Testers, Test Managers, Developers, Test Automation Specialists, Performance Test Specialists, Test Environment Specialists, Security Testing Specialists and anyone else wishing to take the Advanced Level Security Tester Exam.


On completion of this course, attendees will be fully prepared to take the ISTQB Certified Tester Advanced Level Security Tester examination.

Recommended Experience

To be able to obtain an Advanced Level Security Tester certification, candidates must hold the ISTQB® Certified Tester Foundation Level qualification (or ISEB equivalent). You need to have at least 18 months of practical experience in the software testing field. A basic understanding of security testing concepts would be an advantage.

Course Outline

The Basics of Security Testing
  • Security Risks
  • Information Security Policies and Procedures
  • Security Auditing and its Role in Security Testing
Security Testing Purposes, Goals and Strategies
  • The Purpose of Security Testing
  • The Organizational Context
  • Security Testing Objectives
  • The Scope and Coverage of Security Testing Objectives
  • Security Testing Approaches
  • Improving the Security Testing Practices
Security Testing Processes
  • Security Test Process Definition
  • Security Test Planning
  • Security Test Design
  • Security Test Execution
  • Security Test Evaluation
  • Security Test Maintenance
Security Testing Throughout the Software Lifecycle
  • Role of Security Testing in a Software Lifecycle
  • The Role of Security Testing in Requirements
  • The Role of Security Testing in Design
  • The Role of Security Testing in Implementation Activities
  • The Role of Security Testing in System and Acceptance Test Activities
  • The Role of Security Testing in Maintenance
Testing Security Mechanisms
  • System Hardening
  • Authentication and Authorization
  • Encryption
  • Firewalls and Network Zones
  • Intrusion Detection
  • Malware Scanning
  • Data Obfuscation
  • Training
Human Factors in Security Testing
  • Understanding the Attackers
  • Social Engineering
  • Security Awareness
Security Test Evaluation and Reporting
  • Security Test Evaluation
  • Security Test Reporting
Security Testing Tools
  • Types and Purposes of Security Testing Tools
  • Tool Selection
Standards and Industry Trends
  • Understanding Security Testing Standards
  • Applying Security Standards
  • Industry Trends

About the Trainer

From London to the World and after a circuitous route into IT, Keith has over 20 years’ experience in software quality and risk. He works as a consultant, trainer, speaker and writer in the non-functional quality risk area.

“Testing, after all, is only a part of quality risk mitigation. It isn’t quality risk management.”

Date & Price

15 – 18th of September

28h / 4 days

Schedule: 9h30 AM to 5h30 PM

Live Training early bird price: 1890€

Contact us for more information & enrollment:

14 — 17 Set 2021

Laboral — 09:30h/17:30h

Nível Avançado

28 horas — 4 dias

Live Training



Your message was successful sent.



We use cookies to offer you a better browsing experience, analyse site traffic, presonalize content, and serve targeted ads. Read how we use cookies and how you can control them in our “Cookie Settings”.
By using our site, you consent to our use of cookies.

> Cookie Settings

√ Accept Cookies