Outline
1. Security Paradigms – 135 minutes (K3)
Lesson 1 - Asset Security Levels
Lesson 2 - Security Audits
Lesson 3 - The Concept of Zero Trust
Lesson 4 -
Open-Source Software (OSS)
2. Security Test Techniques - 150 minutes
(K3)
Lesson 1 - Applying Security Test Types According to a Test Context
Lesson 2 - Applying Security Testing
Lesson 3 - Recertification Testing and Reconciliation Testing
Lesson 4 - Testing Identification,
Authentication and Authorization
Lesson 5 – Testing
Encryption
Lesson 6 - Testing Protective Technologies
3. The Security Test Process - 120
minutes (K3)
Lesson 1 - The Security Test Process
Lesson 2 - The Security Test Environment
Lesson 3 - Designing Component Level
Security Tests
Lesson 4 - Security Test Design at the Component
Integration Level
Lesson 5 - System Testing and Acceptance
Testing
4. Standards and Best Practices - 195
minutes (K3)
Lesson 1 - Introduction to Standards and
Best Practices
Lesson 2 – Application of Security Standards
and Best Practices
Lesson 3 - Leveraging Standards and Best
Practices
5. Adjusting To the Organizational
Context - 195 minutes (K4)
Lesson 1 - The Impact of Organizational Structures
in the Context of Security Testing
Lesson 2 – The Impact of Regulations on Security
Policies and How to Test Them
Lesson 3 – Analyze an Attack Scenario
Lesson 4 - Common Approaches of an
Attacker
Lesson 5 - Incident Response and Post-Incident
Analysis
6. Adjusting to Software Development
Lifecycle Models - 165 minutes (K4)
Lesson 1 - The Effects from Different
Software Development Models
Lesson
2 - Sequential Models
Lesson
3 - Agile Models
Lesson 4 - DevOps
Lesson 5 - Security Testing During
Operations and Maintenance
7. Security Testing as Part of an
Information Security Management System - 105 minutes (K3)
Lesson 1 - Acceptance Criteria for Security
Testing
Lesson 2 - Input for an Information Security
Management System (ISMS)
Lesson 3 - Improving an ISMS by Adjusted
Security Testing
Lesson 4 - Improving Measurability
Within an ISMS
8. Reporting Test Results - 135 minutes
(K3)
Lesson 1 - Security Test Reporting
Lesson 2 - Identifying and Analyzing Vulnerabilities
Lesson 3 - Close Identified Vulnerabilities
9. Security Test Tools - 90 minutes
(K3)
Lesson 1 - Categorization of Security Test
Tools
Lesson 2 - Considerations for Selecting Tools
Lesson 3 - Applying Security Test Tools
