ISTQB® Advanced Security Tester Certification
- Plan, perform and evaluate security tests from a variety of perspectives – policy-based, risk-based, standards-based, requirements-based and vulnerability-based
- Align security test activities with project lifecycle activities
- Analyze the effective use of risk assessment techniques in a given situation to identify current and future security threats and assess their severity levels
- Evaluate the existing security test suite and identify any additional security tests
- Analyze a given set of security policies and procedures, along with security test results, to determine effectiveness
- For a given project scenario, identify security test objectives based on functionality, technology attributes and known vulnerabilities
- Analyze a given situation and determine which security testing approaches are most likely to succeed in that situation
- Identify areas where additional or enhanced security testing may be needed
- Evaluate effectiveness of security mechanisms
- Help the organization build information security awareness
- Demonstrate the attacker mentality by discovering key information about a target, performing actions on a test application in a protected environment that a malicious person would perform, and understand how evidence of the attack could be deleted
- Analyze a given interim security test status report to determine the level of accuracy, understandability, and stakeholder appropriateness
- Analyze and document security test needs to be addressed by one or more tools
- Analyze and select candidate security test tools for a given tool search based on specified needs
- Understand the benefits of using security testing standards and where to find them
- Security Testers
- Security Analysts
- Project Managers
- Test Automation Engineers
- Cybersecurity Engineers
- DevSecOps Engineers
- Systems Engineers
- Software Developers
ISTQB® Certification & Exam
The International Software Testing Qualifications Board (ISTQB) is the world's most widely-recognized certification of software testing skills and knowledge. Founded in 2002, the ISTQB is is a not-for-profit association that has issued more than 750,000 certifications in 129 countries around the globe. The ISTQB Software Tester Certification—Foundation Level (CTFL) is a prerequisite for the ISTQB Usability Testing (ISTQB CTFL-UT) exam. In order to be eligible to take this exam, potential examinees must submit proof of Certified Tester—Foundation Level (CTFL) certification.
For public virtual classes, the ISTQB Advanced Level – Security Tester (CTAL-SEC) exam is an additional fee and is not included in the course price. You have the option to add on this exam voucher when you register for the class. If you choose to add on the exam voucher, it will be emailed to you upon completion of the course. If you do not choose to add-on the voucher when purchasing this class, you must reach out to an exam provider directly if you wish to take an exam later.*
*This purchase does NOT fall under our Coveros guarantee of retaking the class if you do not pass the exam within 30 days of taking the class. This purchase includes just one (1) exam voucher. All additional vouchers will need to be purchased with an exam provider.
- Understanding System Hardening
- Testing the Effectiveness of System Hardening Mechanisms
- The Relationship Between Authentication and Authorization
- Testing the Effectiveness of Authentication and Authorization Mechanisms
- Understanding Encryption
- Testing the Effectiveness of Common Encryption Mechanisms
- Understanding Firewalls
- Testing Firewall Effectiveness
- Understanding Intrusion Detection Tools
- Testing the Effectiveness of Intrusion Detection Tools
- Understanding Malware Scanning Tools
- Testing the Effectiveness of Malware Scanning Tools
- Understanding Data Obfuscation
- Testing the Effectiveness of Data Obfuscation Approaches
- The Importance of Security Training
- How to Test the Effectiveness of Security Training
- The Impact of Human Behavior on Security Risks
- Understanding the Attacker Mentality
- Common Motivations and Sources of Computer System Attacks
- Understanding Attack Scenarios and Motivations
- The Importance Of Security Awareness
- Increasing Security Awareness
- Confidentiality of Security Test Results
- Creating Proper Controls and Data Gathering Mechanisms for Reporting Security Test Status
- Analyzing Interim Security Test Status Reports
- Analyzing and Documenting Security Testing Needs
- Issues with Open Source Tools
- Evaluating a Tool Vendor’s Capabilities
- The Benefits of Using Security Testing Standards
- Applicability of Standards in Regulatory Versus Contractual Situations
- Selection of Security Standards
- Where to Learn of Industry Trends in Information Security
- Evaluating Security Testing Practices for Improvements
Never Miss a Thing.
Sign up for our mailing list and stay up to date
on training opportunities.