Security is often a non-functional entity that is being overlooked in most software development projects. Security breaches not only costs companies money, but a loss of business and market confidence. This course teaches the principles of security testing which is applicable to testers, developers, business analyst and managers. It provides insight into the various security vulnerabilities and threats that systems are being exposed to and measures on how to prevent security breaches. Candidates will learn how to plan, design and identify different types of security tests according to best practices.
COURSE OBJECTIVES:
The learning objectives for this course include an understanding of:
- Overview of Virtual Security
- Physical Security
- Network Security
- Internet Security
- Software and Data Security
- Context of Security Testing
- The purpose, concepts, advantages and disadvantages of security testing
- Different types of security vulnerabilities and how they can affect a system’s functions and performance
- Regional and international legislation for security.
- Security Test Methodologies and Processes
- How to plan, identify, prepare and identify security tests
- Different security test methodologies, standards and processes will be discussed.
- Types and Techniques of Security Test
- Types of security tests and techniques
- Penetration testing, vulnerability scanning, ethical hacking, competitive intelligence scouting
- Denial of services, user interface attacks, privilege testing, password cracking,
- Containment testing, Google hacking, SQL injection and port scanning
- Pitfalls in Security Testing
COURSE / STUDENT MATERIALS:
- 1 and a half days of instructor-led training and exercise facilitation
- Learner Manual (excellent post-class reference)
- Participation in unique exercises designed to apply concepts
- 60 minutes multiple choice exam after the training
CERTIFICATION:
Successfully passing (65%) the 60 minutes open-book exam, consisting of 40 multiple-choice questions, leads to the Security MyTest Fundamentals Certificate as a Certified Security Tester. The certification is governed and maintained by AutoMyTest.
PREREQUISITES:
- Familiarity with IT software development
AUDIENCE:
- Anyone involved in software testing, testers, developers, business analysts and managers
