top of page

Security Testing


Security Testing

Security Testing is the testing of a network, system, product or design, against the specified security requirements and/or for vulnerabilities (penetration testing).

Depending on the type of organisation for which you work, your work is focused on testing - particularly by examining and probing applications, systems and networks - for vulnerabilities. It might involve a wider set of issues, including, on one side, planning and carrying out scripted tests of hardware or software components; on the other side, you may plan and execute incident response/Red Team exercises.

If you test systems while they are in development or being updated, it's likely you work in a software development organisation or for a consultancy that supports clients’ development work. If, as a penetration

On the program learners will receive knowledge and skills relating to the following areas:

  • Risk Management

  • Project Management

  • Compliance Monitoring and Controls Testing

  • Security Evaluation

  • Functionality Testing

  • Penetration Testing

  • Conducting Simulated Attack Exercises

  • GDPR

  • Data Protection Act 2018

  • Common Cyber Security Frameworks

  • NIST Cybersecurity Framework

  • ISO 27001

  • Internal and Statutory Audit

tester, you test completed and live systems, you probably work for a consultancy. In either case, your work normally consists of fairly short projects - of a few weeks at most - and, in normal circumstances, requires you to travel to client sites to work in their secure environment.

You may carry out less hands-on but still technical work, such as specifying and producing the test environment, test data and test scripts for planned tests. To do this, you understand all the requirements that a piece of software or hardware has to meet. You may review the test products of colleagues and analyse and provide feedback on a test strategy or test plans.

If your role focuses on penetration testing, you may work independently much of the time. However, you present your findings to close colleagues, managers and, in some roles, to system managers or external clients. This primarily involves producing written reports but, on substantial testing projects, you probably need to provide a verbal briefing as well.

Given the need to stay ahead of potential attackers, you keep your knowledge and skills of vulnerabilities and threats up to date.

Entry Level Program

Learners will receive...

  • Coming soon...

Practitioner Level Program

Learners will receive...

  • Coming soon...

bottom of page