Security testing strategy

Develop a strategy how to approach security testing for your organization and products.

 

1 day

Coaching
Starting with an introduction into the field, we evaluate your current status quo of security testing, identify the gaps, and develop a strategy for the future.
Participants
  • Product managers, project managers, test managers, and security managers who need to establish a solid understanding about security testing methods and how to apply them throughout the development lifecycle.
Training goals
  • Get to know the motivation, challenges and limitations of security testing
  • Find out how to thoroughly consider security testing in the product development lifecycle (e.g., testing activities in the different phases of the lifecycle)
  • Get an overview of different security testing methods and understand the differences
  • Learn and understand the basic principles of security testing
  • Learn and understand “what” to target in the security testing in which testing setup (e.g., systems, devices, components, interfaces)
  • Get to know how to handle identified weaknesses and which mitigation options exist
  • Create a first draft of a security testing strategy during the workshop
  • Understand the requirements for security testing from the most prominent standards and regulations
  • Analyze the current status quo in your company together with the trainer
  • Compare the status quo with best practices and other requirements
  • Develop a target picture for the future and define the next steps
Requirements
  • Technical understanding of systems/products and system/product development
  • Basic understanding of IT security is helpful
  • If available, an overview of the own security testing strategy
Duration
  • 1 day
Language:
ISO 9001:2015 Home