ISTQB® Certified Tester: Advanced Level – Security Tester

Print Friendly, PDF & Email

Em pré-inscrição. Entre em contacto para obter mais informações.

Nível Avançado | 28 horas | 4 dias

Oferta do Exame de Certificação.

Apresentação

A Olisipo é a empresa responsável pela divulgação do portfólio formativo da Expleo em Portugal. A Expleo Portugal é ISTQB® Accredited Training Provider e ISTQB® Platinum Partner.

A Expleo Academy faz a preparação e Certificação Oficial de profissionais em ISTQB (Certified Tester Foundation Level; Certified Tester Foundation Level – Agile Extension; Certified Tester Foundation Level Specialist – Automotive Software Tester; Certified Tester Advanced Level, Test Manager, Test Analyst, Technical Test Analyst, Security Tester, Tester Automation Engineer, oferta única em Portugal, reconhecida pela ISTQB – International Software Testing and Qualification Board e pela PSTQB – Associação Portuguesa de Testes de Software.

A segurança é uma parte importante do desenvolvimento de software, que incide sobre as suas vulnerabilidades. Os testes de segurança são utilizados para verificar a sensibilidade do sistema a vários tipos de ataques. Como Profissional de Testes desta área, ficará a par dos riscos de segurança e como estes podem ser mitigados. A Certificação ISTQB® Certified Tester, Advanced Level – Security Tester (CTAL-ST) comprova o seu conhecimento na área de testes de software, com especialização nos aspectos de segurança.

Como é que os Testes de Segurança acrescentam valor às organizações?
A digitalização de praticamente todas a atividades económicas aumentou a dependência de consumidores e organizações relativamente aos canais online. Quaisquer falhas de segurança podem resultar na perda de confiança dos consumidores e consequentemente na perda de faturação. Os ataques à segurança dos canais online também tem aumentado exponencialmente, tanto em impacto potencial como na qualidade dos mesmos. Nestes cenários os Testes de Segurança são a única disciplina que ajuda as organizações a identificar as suas vulnerabilidades e a tomar medidas corretivas. Esta é uma área de crescente investimento e preocupação por parte das organizações, incluindo as mais pequenas. mas também mais vulneráveis.

Este curso oficial é acreditado pela PSTQB – Associação Portuguesa de Testes de Software.


In today’s online world, organisations are vulnerable. As more and more services become connected and available, the security risk increases. For example, in 2016 upwards of 3.5 billion records were stolen from organisations.

However, security is not just securing the technology. It encompasses the people within an organisation and the processes they follow. It covers physical security, social engineering, tools and techniques and, importantly, an understanding of the ‘mindset’ of malicious users.

The ISQTB Advanced Level Security Tester provides attendees with a range of security testing tools, techniques and processes, built on the experience of the SQS Security Testing team. You might even learn to pick a lock or two…

Destinatários

Requirements Engineers, Functional Testers, Test Managers, Developers, Test Automation Specialists, Performance Test Specialists, Test Environment Specialists, Security Testing Specialists and anyone else wishing to take the Advanced Level Security Tester Exam.

Objetivos

On completion of this course, attendees will be fully prepared to take the ISTQB Certified Tester Advanced Level Security Tester examination.

Pré-requisitos

To be able to obtain an Advanced Level Security Tester certification, candidates must hold the ISTQB® Certified Tester Foundation Level qualification (or ISEB equivalent). You need to have at least 18 months of practical experience in the software testing field. A basic understanding of security testing concepts would be an advantage.

Programa

This three-day course follows the ISTQB Advanced Level Security Tester syllabus and covers the following:

The Basis of Security Testing

  • Security Risks
  • Information Security Policies and Procedures
  • Security Auditing and its Role in Security Testing

Security Testing Purposes, Goals and Strategies

  • The Purpose of Security Testing
  • The Organizational Context
  • Security Testing Objectives
  • The Scope and Coverage of Security Testing Objectives
  • Security Testing Approaches
  • Improving the Security Testing Practices

Security Testing Processes

  • Security Test Process Definition
  • Security Test Planning
  • Security Test Design
  • Security Test Execution
  • Security Test Evaluation
  • Security Test Maintenance

Security Testing Throughout the Software Lifecycle

  • Role of Security Testing in a Software Lifecycle
  • The Role of Security Testing in Requirements
  • The Role of Security Testing in Design
  • The Role of Security Testing in Implementation Activities
  • The Role of Security Testing in System and Acceptance Test Activities
  • The Role of Security Testing in Maintenance

Testing Security Mechanisms

  • System Hardening
  • Authentication and Authorization
  • Encryption
  • Firewalls and Network Zones
  • Intrusion Detection
  • Malware Scanning
  • Data Obfuscation
  • Training

Human Factors in Security Testing

  • Understanding the Attackers
  • Social Engineering
  • Security Awareness

Security Test Evaluation and Reporting

  • Security Test Evaluation
  • Security Test Reporting

Security Testing Tools

  • Types and Purposes of Security Testing Tools
  • Tool Selection

Standards and Industry Trends

  • Understanding Security Testing Standards
  • Applying Security Standards
  • Industry Trends

Relacionados:

Pedido de Informação