Training About ALPI Consulting Products News & Events Careers Contact

Course Catalog

Choose ALPI and Get Peace of Mind with our "Free Refresher Guarantee!"

ALPI training courses are uniquely effective at building better testers. We're so confident about our course quality that we'll even let you retake the course for FREE within four months! Need other reasons to choose ALPI? We have many!

• Our trademark Interactive Learning Method™ incorporates your workplace challenges into the classroom as teaching examples so you can see the concepts come to life.

• Our live instructors can answer your questions about how to apply the material to your real-world projects. This is just one of the reasons our courses are better than online courses - see the 4 reasons ALPI courses are better than online courses.

• Our courses are designed around you, so you gain practical skills that are ready to use as soon as soon as you get back to work.

Get peace of mind with ALPI and our "Free Refresher Guarantee!" Contact us for details on this outstanding ALPI-only benefit! Register now, as courses fill quickly.

printer-friendly version

Security Testing for the Enterprise and the Web
Course Description This is a practical interactive workshop designed to provide a foundation for security testing. You will learn the terminology, the unique issues, and the process for testing security in web and enterprise applications. As a result of attending this course, you should be able to understand security issues and have an increased comfort level in testing the security of web-based and enterprise applications.

You will emerge from this two-day course knowing how to develop a security testing strategy and security test plan. The information that your company obtains and stores is perhaps the most valuable corporate asset. Learn how to protect it and make sure protection measures are working.

Duration 2 day(s)
Time 9 - 5 pm
Price $1,500
Labs Exercises will be used throughout the course to reinforce security testing concepts as they relate to the enterprise and the web.

Intended Audience Any one involved in the Testing Lifecycle or Software Development will benefit from this innovative and practical course. This course is perfect if you are a QA Manager, Test Manager, Test Analyst, End User, Tester or Web Developer.

Prerequisites Requires basic IT testing knowledge or experience.

Outline Intro to Computer Security
  • What is security testing?
  • Is security testing possible?
  • The risks, benefits, threats
    Understanding the Attackers
  • Who are the Hackers and Crackers?
  • Five phases of a security attack
    Understanding the Technology
  • Networking basics
  • Firewalls, Ethernet, Hubs and Switches
  • Operating systems: UNIX, Windows
  • Network security solutions
    Security Protocols and Techniques
  • Transaction security essentials
  • Encryption basics
  • VPN, Digital Certificates, SSL, Cookies
    Internet Privacy and Information Privacy
  • Is there such a thing as “Internet Privacy?”, threats and remedies
  • Corporate espionage
    A Process for Security Testing
  • Determine test strategy and tools
  • Design automated security tests
  • Perform test and report results
  • How to Develop a Security Testing Strategy
  • How testing fits into an enterprise security process
  • Questions for determining a security test strategy
    How to Perform a Security Assessment
  • Defining the scope of the assessment
  • IDing, assessing, prioritizing the risks
    Writing a Security Test Plan
  • Define a security test plan, the scope of test planning and who will perform testing
    Testing External Network Attacks
  • Dial-up, network and web-based attacks
    Testing for Language-based Vulnerabilities
  • Script kiddies and pros
  • Application-based attacks
    Testing for Backdoors and Trojan Horses
  • How they are placed on systems
  • Traditional and kernel-level rootkits
    Testing Denial-of-Service Attacks
  • Locally stopping services
  • Remotely stopping services
    Testing Virus and Password Attacks
  • Nature and facts of virus attacks
  • Types and defenses
    Testing Web Application Attacks
  • Cookie cracks and session hijacking
    Performing Security Tests
  • Penetration, encryption, authorization
    Reporting the Results of Security Testing
  • Developing and writing a security test report standard
    Security Testing Tools
  • Scanners, sniffers
  • Network monitoring, intrusion detection
    How to Write a Security Response and Recovery Plan
  • Developing a security response recovery plan standard
    Protecting Intellectual Property in the Digital Age
  • The problem and issues
  • Means of IP protection
  • The threat and outlook
    Developing an Action Plan for Security
  • Identifying your greatest needs
  • Developing an action plan

  • See the currently scheduled public and virtual live course dates below and click on the "Register Now" button.

    If you have 6 or more students, save time and money with our on-site instruction at your facility. Learn more by calling us at 301 654-9200.

    Class Dates
    Start End Location

          4 REASONS

    1. ALPI has been helping software testers since 1993. Our experience assures you of quality training.

    2. You have the opportunity to re-take the same course at ALPI for FREE within four months of the original class date.

    3. Our Interactive Learning Method™ offers a richer training experience that gives you skills you can apply right away.

    4. Our instructors have real-world experience so you learn concepts - and how to apply them.