Course Overview
With the ever-increasing numbers of security breaches, both human and machine-based, significantly more understanding is required from testers to ensure that the proper quality assurance measures are in place for assuring the security of IT systems.
Many courses about security testing concentrate solely on the very technical hacking side of things, which is great, but it is not the whole picture. This course is aimed at the softer-side of security testing and addresses the following key elements and how we manage them from a testing perspective through the life cycle from inception to delivery, including: The ISTQB Advanced Security course is for Technical Testers, Security Testers, Security Co-ordinators and Managers, plus testers and test managers who are serious about including security aspects into their test plans or who want to specialise. Security of our systems is a real big deal for us all, but how to test they are secure is a bit of a problem. Randy Rice security test expert will talk you through the Advanced Security Tester training course and the benefits it will bring: “I thought ISTQB Advanced Security Tester was an excellent course that covered the syllabus well and in an interesting and engaging way. Having one of the authors of the ISTQB syllabus (Randall Rice) present the training content that he personally developed was a great bonus of course, and his enthusiasm for the topic was refreshing. The syllabus and course are a good bridge between the worlds of testing (as taught by ISTQB) and the technical world of penetration testing, without going in to the depths required by a pure security qualification like CISSP. I would certainly be looking to put other people through the course in the future”Chris Jones, Senior Managing Consultant, IBM
Who is it for?
What are the benefits of the ISTQBÂ Advanced Security Tester Qualification?
Customer Review
Anonymous –
Course contained a lot in info being talked through but the trainer was excellent in breaking this up with the use of frequent breaks and using the exercises throughout the course
Anonymous –
Course was very insightful into giving an understanding into Security Testing. I found John the trainer very helpful and friendly. I enjoyed the interactive exercises which involved all participants on the course.
Anonymous –
The course was very informative and engaging. The trainer was very patient and clear in explaining topics.
Anonymous –
I found the course to be really informative and really gave me an increased knowledge of Security Testing. I found John to be really engaging, open and I didn’t come away on any day bored. I came away with plenty of thoughts and ideas for my actual day job.
Anonymous –
Course was very insightful into giving an understanding into Security Testing. I found John the trainer very helpful and friendly. I enjoyed the interactive exercises which involved all participants on the course.
Anonymous –
The course was very informative and engaging. The trainer was very patient and clear in explaining topics.
Anonymous –
I found the course to be really informative and really gave me an increased knowledge of Security Testing. I found John to be really engaging, open and I didn’t come away on any day bored. I came away with plenty of thoughts and ideas for my actual day job.
Lakshmi Pochampally | Test Lead | Capgemini –
Really good course. Very informative. Only downside is it could have been more interactive like doing some exam questions to promote discussion.
miroslav melkner | test lead | solargis –
good explanations, nice examples, thumbs up
Dukhbhanjan Jutla | Assoc. Delivery Director – QAT | NTT DATA –
Informative with lots of useful information and examples derived from previous projects
Rachel Bell | Senior QA Analyst | Tribal –
The course was run at a good pace with lots of chance for discussion around the exercises. Some of the course was out of date/irrelevant due to being written by an American – it would be good if this could be updated. There were also a few slides that were skimmed over as they were not required for the exam, so perhaps take out. I would have liked some exam practice incorporated into the course/homework so that we could have had a discussion around the answers.
Rosie King | Senior QA Analyst | Tribal Group –
John provided lots of useful information. The course was intense but John regularly checked in on us and made sure we were happy as we went along. John treated all questions as important. No question was silly and he explained well. I’ve been on courses before where the content felt like it was purely about getting you to pass an exam – This wasn’t that. I felt like I was learning about security with an exam to come later on and I feel like the course has empowered me in my role.
My only suggestion (which might not be possible depending on license agreements with Randy?) – There were elements in the presentation that were Americanised or assumed knowledge from other Advanced courses. John did a great job to make these more relevant but it would have been good in general to maybe have the presentation itself tweaked slightly.
Leigh Sampson | Senior QAA Analyst | Tribal –
John has really good knowledge and gives good real life examples to back up this theory bits.
The course material is based on an American script and some of the word/phases were not UK friendly – I was a little surprised why the slides hadn’t been edited prior to course delivery. There was also a section, which was include, but isn’t needed – I would have expected this to be cut out/trimmed down.
John is really good at adding extra information to the slides whilst presenting (i.e. adding extra text on top of the slide), but unfortunately John was using a digital pen (or something) and his hand writing was really hard to read, which was a real shame, as it added extra value and had some really good points. I don’t know if a different tool would allow John to add this text ad-hoc, but in a way, which is easier to read – especially when revisiting the slides later for revision.
I enjoyed the course and felt that John was a good trainer for this.
Millicent Stockdale | Software Tester | Future Facilities –
Course was very dense but informative. It was delivered in a easy to comsue way by a knowledgable trainer
Susannah Nicole Roberts | Senior Quality Assurance Analyst | Tribal –
I think I could have done with a few more sections where we did questions privately, then reviewed as a group – this was done on the foundation course and I found it worked quite well for me.
I think it was mentioned a few times that the course hasn’t yet been updated (like some of the others have) so it’s not actually in line with bits of the foundation course I’ve done recently – though they’re not huge differences this is a little odd for anyone who’s done foundation recently.
There’s a lot of content for 4 days and not much time for questions around the topics without affecting the time but John did answer questions I had and I’m very grateful for that.
I did struggle a bit with reading John’s writing at times, but I made a lot of notes as he spoke on my hard copy and was able to just check bits I wasn’t so sure on reading back to update my notes appropriately.
Intense 4 days but it’s been full of information and a lot of learning!
Joshua Hawkins | QA Tester | Tribal Group PLC –
Course was very detailed but John kept interest by being responsive and knowledgeable.
Jasmine Garton | Senior QA Analyst | Tribal –
The course was very intensive, but very informative. My trainer, John, was brilliant – provided us with lots of working examples and useful materials to prepare for the exam, as well as for future use and interest. At times, it felt like information overload, but I think that is to be expected with the amount of information that needs to be covered over a four day period – to try and combat this, John made sure we had lots of breaks at regular intervals to recharge. Overall, really good experience and would recommend, and feel lucky to have had such a kind and welcoming trainer to ease the course!!
Dave Harding | Test Specialist | NHS Digital –
I’ve found this to be a very informative and eye-opening course – John was an excellent trainer and I was very fortunate to be the only participant in this course. Excellent referencing of the course materials and personal experience/references as well to put information into context.
Michelle Mabasa| Tester| Storefeeder –
Informative, lots of information to go through though
Tomáš Martinec| Verification engineer| Sysgo –
The course was in-depth introduction across all the aspects of security testing. As such it was purposeful. I would appreciate more expert-level course almost solely focusing on discussions and exercises of real-life scenarios with intent of exchanging expert-level know-how.
Sheena Pem| Director| Deloitte –
Great and insightful course. It was a heavy amount of content was was presented well over the 4 days. Thanks for John for being a great trainer and bringing the examples to life.
Eivind Berntsen|Test lead|Nordic Semiconductor ASA –
good but would have preferde on site training
Claire Penswick|QA Delivery Lead|Channel 4 –
Very informative and John did a great job of breaking down the content and ensuring that the group were following, engaged and ‘ok’ 🙂
Nader Althubaity | QA Engineer | Saudi Information Tech Company –
The course was very thorough and the instructor very knowledgeable.
Mark Whitby | Head of Development and Testing | Health Intelligence Ltd –
I passed the test with a score of 81% which I was really chuffed with as it was a very challenging course and exam, but definitely worth it! I’ve now been on two TSG courses (both with John Young) and Charlie and Laura have both done one each and we have all loved them and had only positive comments to make on them.
Sandra Kasa|QA Pruduct Tester trainee|SupplyPoint –
Very well put together & delivered.
Kerry Chant|Senior Software Tester|MASS –
The course was delivered online, which places more responsibility on the trainer to deliver the course material. I much prefer a classroom where you’re focused, have fewer distractions and engage and interact more. Having said that, I do think John delivered the material (which was dense) clearly, was personable, and ensured we were all had the opportunity to ask questions and debate topics.
Jackie Fletcher|Test Manager|Education Skills Funding Agency –
Very compressive and well taught
Luiza Precup| YOTI –
I enjoyed your training so much and passed the exam first time
Chris Jones | Senior Managing Consultant | IBM –
“I thought ISTQB Advanced Security Tester was an excellent course that covered the syllabus well and in an interesting and engaging way. Having one of the authors of the ISTQB syllabus (Randall Rice) present the training content that he personally developed was a great bonus of course, and his enthusiasm for the topic was refreshing. The syllabus and course are a good bridge between the worlds of testing (as taught by ISTQB) and the technical world of penetration testing, without going in to the depths required by a pure security qualification like CISSP. I would certainly be looking to put other people through the course in the future”
Anonymous –
Course contained a lot in info being talked through but the trainer was excellent in breaking this up with the use of frequent breaks and using the exercises throughout the course