Certified Advanced Software Security Tester (CASST)

Certified Advanced Software Security Tester (CASST)
CERTIFIED ADVANCED SOFTWARE SECURITY TESTER (CASST)

Certified Advanced Software Security Tester (CASST)

Enquire Now

Security Tester qualification is aimed at people who have already achieved an advanced point in their careers in software testing and wish to develop further their expertise in security testing. The modules offered at the Advanced Level cover a wide range of testing topics.

Duration : 25 Hours

Certificate Accreditation: GAQM

Categories: ,
Share:
Description
Additional Info
Description

Security Tester qualification is aimed at people who have already achieved an advanced point in their careers in software testing and wish to further develop their expertise in security testing. The modules offered at the Advanced Level cover a wide range of testing topics.

Application security testing is an approach to validate security requirements and uncover vulnerabilities in an application (web / mobile / thick client / web services) and its associated components, by performing static and dynamic security testing. Security testing is becoming a crucial validation activity. It cuts across the lines of business (LOB), enterprise testing, and shared services. Thus, chief information security officers (CISOs) and several information security groups are looking to add security testing as a new service line.

The certification is helpful in demonstrating the attacker mentality by discovering key information about a target, performing actions on a test application in a protected environment that a malicious person would perform, and understanding how evidence of the attack could be deleted.

Pre-requisites
Before a candidate can pursue the Certified Advanced Software Security Tester (CASST), he or she must hold Certified Software Security Tester (CSST) or equivalent certification.

E-Course Duration
20 to 25 Hours

Exam Pattern

  • Total Questions: 40 Multiple Choice Questions
  • Passing Score: 80% (32 out of 40 correct)
  • Exam Duration: 1 hour (60 Minutes)
  • Exam Format: Non-proctored, online, can be taken anytime and anywhere within an eight-month validity period

Exam Voucher Policy

  • Upon purchasing the Premium Package or an Exam Voucher Code, a voucher code with two attempts will be assigned to your login profile under the “My Vouchers” tab
  • You can take the exam through the “My Exam(s)” tab in your profile by applying the voucher code
  • The Exam Voucher is valid for two (2) attempts
  • If you pass the exam on the first attempt, the voucher will not be valid for a second attempt
  • If you are unable to pass the exam within these two attempts, you can purchase a new voucher code, which will grant two additional attempts

Certification Validity
The Certified Advanced Software Security Tester (CASST)™ Certificate is valid for life

Course Outline

Module Information – 1

  1. Improving the Security Testing Practices
  2. Security Test Process Definition
  3. Lifecycle Alignment and Security Testing Tasks
  4. Security Test Planning
  5. Security Test Design
  6. Implementing Policy-Based Security Tests
  7. Security Test Execution
  8. Security Test Evaluation
  9. Security Test Maintenance
  10. Role of Security Testing in a Lifecycle
  11. The Role of Security Testing in Design
  12. The Role of Security Testing in Implementation Activities
  13. Component Test Analysis & Design

Module Information – 2
14. Analyzing Component Test Results
15. Component Integration Test Analysis & Design
16. The Role of Security Testing in System and Acceptance Test Activities
17. Definition of Security-Oriented Acceptance Criteria
18. The Role of Security Testing in Maintenance
19. Testing the Effectiveness of System Hardening
20. Authentication and Authorization
21. Firewalls and Network Zones
22. Encryption, Intrusion Detection, Malware Scanning and Data Obfuscation
23. Training
24. Security Awareness
25. Attack Motivations
26. Social Engineering and Security Awareness

Module Information – 3
27. Revising Security Expectations
28. Security Test Reporting
29. Reporting Security Test Status
30. Reporting Security Test Results
31. Types and Purposes of Security Test Tools
32. Tool Selection
33. Open Source Tools
34. Benefits of Standards
35. Applying Security Standards

Target Audience

  • Professionals who want to upgrade their knowledge on Advanced Software Security Testing
  • Software testers who want to expand their knowledge of security testing
  • Security testers who wish to obtain an advanced certification to solidify their knowledge
  • Security administrators who want to learn more about how to test the security defenses in their organization
  • Anyone who wants to learn more about security testing at an Advanced Level
Additional Info
Related Products
Master of Arts In Marketing
Master of Arts In Marketing
Add to wishlist
GAQM Certified Training Programs
Master of Arts In Marketing
Enquire Now
ISO 22000:2018 – Certified Lead Auditor
ISO 22000:2018 – Certified Lead Auditor
Add to wishlist
GAQM Certified Training Programs
ISO 22000:2018 – Certified Lead Auditor
Enquire Now
ISO/IEC 27032 – Lead Cyber Security Manager
ISO/IEC 27032 – Lead Cyber Security Manager
Add to wishlist
GAQM Certified Training Programs
ISO/IEC 27032 – Lead Cyber Security Manager
Enquire Now
Associate in Project Management (APM)™
Associate in Project Management (APM)™
Add to wishlist
GAQM Certified Training Programs
Associate in Project Management (APM)™
Enquire Now
Item added to wishlist View Wishlist
Item removed from wishlist