ISTQB Security Tester Certificate

Want to develop your expertise in security testing? In this ISTQB® Security Tester course, you will learn how to plan, perform and evaluate security tests from a variety of perspectives, including policy, risk, standards, requirements and vulnerability.

By the conclusion of ISTQB Security Tester, you will be able to align security test activities with project lifecycle activities, and analyse effectiveness of risk assessment techniques. You will also be able to determine the best security test tools based on specified needs

Target audience:

ISTQB Security Tester Certificate is designed for:

  • Experienced Testers wanting to differentiate themselves with skills in security testing.
  • Security Testers wanting to advance and align their skills with industry best practice.
  • Security Testers wanting to accredit their security testing skills for recognition among employers, clients and peers.


Candidates wishing to participate in the ISTQB Security Tester couse must possess the ISTQB Foundation Level certification (or higher), some experience in technical testing, and a level of exposure to security testing.  

  • Plan, perform and evaluate security tests from a variety of perspectives.
  • Evaluate an existing security test suite and identify any additional security tests needed.
  • Analyse a given set of security policies and procedures, along with security test results, to determine effectiveness.
  • For a given project scenario, identify security test objectives based on functionality, technology attributes and known vulnerabilities.
  • Analyse a given situation and determine which security testing approaches are most likely to succeed in that situation.
  • Identify areas where additional or enhanced security testing may be needed.
  • Evaluate effectiveness of security mechanisms.
  • Help the organisation build information security awareness.
  • Demonstrate the attacker mentality by discovering key information about a target, performing actions on a test application in a protected environment that a malicious person would perform, and understand how evidence of the attack could be deleted.
  • Analyse a given interim security test status report to determine the level of accuracy, understandability, and stakeholder appropriateness.
  • Analyse and document security test needs to be addressed by one or more tools.
  • The Basis of Security Testing
  • Security Testing Purposes, Goals and Strategies
  • Security Testing Processes
  • Security Testing Throughout the Software Lifecycle
  • Testing Security Mechanisms
  • Human Factors in Security Testing
  • Security Test Evaluation and Reporting
  • Security Testing Tools
  • Standards and Industry Trends

Please note the exam is not included in the training. 

The exam price for ISTQB Security Tester Examination is 240 USD.

The ISTQB Security Tester exam is conducted online, comprised of 45 multiple choice questions, with a pass mark grade of 65% to be completed within 120 minutes.

Participants that take the exam not in their spoken language, will receive additional 25% time, and will have 30 minutes more, or a total of 150 min.

Please visit the iSQI websites for more information on how to book your online exam.  

Other relevant courses

14. August
3 days
Classroom On Demand Virtual Guaranteed to run
6. November
3 days
Classroom Virtual
26. September
2 days
Classroom Virtual
14. October
5 days
Classroom On Demand Virtual