Recent significant security failures – affecting commercial, educational, and government systems – highlight the damage caused by inadequate cybersecurity.
Such risks can be reduced through more thoughtful design and implementation of critical systems, but appraisals are also necessary to provide adequate confidence in these systems. Testing is a key appraisal activity.
This presentation starts with the “Why?”, “What?”, “When?”, and “Who?” questions about security testing. A wide range of recognitions are now offered for those engaged in various types of testing related to security concerns.
The International Software Testing Qualifications Board (istqb.org) already operates a number of personnel certifications and is currently drafting one for security testers.
This presentation will overview the ISTQB framework and offer details of the expert-level security tester certification now under development.
Participants will be invited to comment on the proposed certification and will be able later this year to review the publicly released beta version.