ISTQB Specialist: Security Testing
Secure the software you test. Threat modeling, vulnerability scanning, penetration testing basics, DevSecOps, and compliance verification. Prepares you for the CT-SEC exam.
advanced
4 courses
16 lessons
This path requires a Pro subscription
Subscribe to unlock all lessons, challenges, and bug hunts.
1
Security Testing Fundamentals
Core security concepts for testers, threat modeling, security standards and regulations, and planning security tests.
advanced
~3.5h
-
Requires subscriptionSecurity Concepts for Testersreading +10 XP
-
Requires subscriptionThreat Modeling for Testersreading +10 XP
-
Requires subscriptionSecurity Standards and Regulationsreading +10 XP
-
Requires subscriptionSecurity Test Planningreading +10 XP
2
Security Test Techniques
Static security testing, dynamic testing, vulnerability scanning, penetration testing basics, and code review for security.
advanced
~4.5h
-
Requires subscriptionStatic Security Testing (SAST)reading +10 XP
-
Requires subscriptionDynamic Security Testing (DAST)reading +10 XP
-
Requires subscriptionVulnerability Scanningreading +10 XP
-
Requires subscriptionPenetration Testing Basicsreading +10 XP
-
Requires subscriptionCode Review for Securityreading +10 XP
3
Security in the SDLC
Integrating security testing throughout the development lifecycle: secure SDLC, agile security, CI/CD, and DevSecOps.
advanced
~3.5h
-
Requires subscriptionThe Secure SDLCreading +10 XP
-
Requires subscriptionSecurity Testing in Agilereading +10 XP
-
Requires subscriptionSecurity Testing in CI/CDreading +10 XP
-
Requires subscriptionDevSecOps for Testersreading +10 XP
4
Security Assessment and Reporting
Risk assessment for security, security test reporting, and compliance verification.
advanced
~2.5h
-
Requires subscriptionSecurity Risk Assessmentreading +10 XP
-
Requires subscriptionSecurity Test Reportingreading +10 XP
-
Requires subscriptionCompliance Verificationreading +10 XP