Fraunhofer Institute for Open Communication Systems
Fraunhofer Institute for Open Communication Systems
Person tippt auf Laptop mit geöffnetem Codefenster in moderner Umgebung
© iStock / gorodenkoff

© iStock / gorodenkoff

Security Tests Throughout the Software Life Cycle

Plan Security Testing Early, Integrate It Systematically, and Implement It Effectively

The Challenge

The security requirements for modern IT systems are continuously increasing and cannot be met by constructive measures alone. A large proportion of known security incidents arise because vulnerabilities are identified too late or insufficiently tested.

In practice, it becomes apparent that security testing is often carried out only sporadically—such as through individual tests shortly before commissioning. Earlier phases of the software lifecycle, such as requirements specification or design, are often neglected. At the same time, many teams lack guidance on which security tests are useful in which phase and how these tests can be integrated into existing development and testing processes.

The result: security gaps become visible late, remediation measures are labor-intensive, and the effectiveness of security activities is difficult to understand.

 

The Solution

The course “Security Tests Throughout the Entire Software Lifecycle” demonstrates how security testing can be systematically and practically integrated into all phases of the software lifecycle—from requirements specification and design to implementation, system testing, acceptance testing, and maintenance.

Participants learn fundamental security testing methods and how to select and apply them appropriately for each phase. A particular focus is placed on deriving security testing objectives, planning tests effectively, and identifying security vulnerabilities early and transparently.

Your Advantages at a Glance
  • Clear overview of phase-appropriate security testing
  • Systematic integration into development and testing processes
  • Confidence in selecting suitable test methods
  • Solid foundation for transparent and well‑founded security decisions
Contents
  • The role of security testing in requirements specification
  • The role of security testing in design
  • The role of security testing in the implementation phase
  • Security tests during system and acceptance testing
  • Security tests in maintenance

Overview of the Training »Security Testing Throughout the Entire Software Lifecycle«

Dates

 

23 April 2026
(Registration until 19 April 2026)

or

21 May 2026
(Registration until 7 May 2026)

or

18 June 2026
(Registration until 4 June 2026)
Eventy Type in person
Participation Fee 800€ per person
(VAT exempt according to §4 No. 22 letter a German VAT Act)
Level Basic
Prerequisites Fundamentals of software testing (e.g., ISTQB Certified Tester Foundation Level)
Duration 1 day (6 hours)
Language German
(English upon request)
English course materials
Group Size 5-12
Location In person at Fraunhofer FOKUS, Kaiserin-Augusta-Allee 31, 10589 Berlin
Book your training

Are you interested in an in‑house training? Then feel free to contact us.

Contact Request
Learning Objectives

After the training, participants will be able to:

  • Classify and plan security testing systematically across the entire software lifecycle
  • Select and apply appropriate security testing methods for each phase
  • Formulate security test objectives and derive specific tests from them
  • Identify and assess security risks at an early stage
  • Design, execute, and evaluate security tests for different test levels (e.g., component, system, end-to-end tests)
  • Integrate security testing transparently into existing development and testing processes
Target Groups

Software testers, software developers, as well as project and product managers involved in secure software development.

The Trainers

Dr. Jürgen Großmann

Jürgen Großmann is team leader of the Critical Systems Engineering group in the SQC business unit of the Fraunhofer Institute FOKUS. He is an expert in quality assurance, risk analysis and IT security testing in the field of critical, networked software systems in the automotive industry and the financial sector. 

Dr. Johannes Viehmann

Dr. Johannes Viehmann is a Senior Researcher and Project Manager in the Critical Systems Engineering group within the SQC business unit at Fraunhofer Institute FOKUS. He is an expert in safety-critical, highly networked systems, trust-building concepts, and risk management.

Contact

Contact Press / Media

Anne Halbich

Fraunhofer Institute for Open Communication Systems
Kaiserin-Augusta-Allee 31
10589 Berlin, Germany

Phone +493034637346

Melden Sie sich zu unserem Newsletter an!

Erhalten Sie regelmäßig Neuigkeiten und exklusive Inhalte direkt in Ihr Postfach.
Bitte füllen Sie das Pflichtfeld aus.

Bitte füllen Sie das Pflichtfeld aus.