Software and System testing

Data protection laws around the globe require ‘reasonable’ security. To determine what ‘reasonable’ means, regulators often refer to (simple) risk assessment models. Actual guidance on what is deemed ‘reasonable’ tends to be couched in list taken from established security engineering frameworks, like Open Web Application Security Project (OWASP) Top10. Many decisions raise issues with ‘insufficient testing’, or ‘lack of oversight during system approval’ (sometimes infelicitously called ‘inadequate User Acceptance Testing (UAT)’), and even direct organisations to conduct Vulnerability Assessments or Penetration Tests. These issues are not limited to small or non-Information Technology (IT) savvy enterprises. Software and system testing are by nature risk based, and a separate engineering discipline. This course provides an overview on core concepts specific to software and system testing, critical for the operational side (in terms of functionality, security, and data protection) as well as contractual considerations.

This course is ideal for busy Data Protection Officers (DPOs), managers, project, and compliance officers, who are responsible for project approvals and system deployments. The course explains the typical engineering jargon, common misunderstandings, and technical details in an understandable and practical manner useful for non-IT audience.

Course Code:	CS102
Title:	Software and System testing
Duration:	½ day (approximately 3.5 contact hours)
Mode of Training:	In-person
Available Date(s):	Please see below.
Venue:	Drew & Napier LLC, 10 Collyer Quay, 10th Floor, Ocean Financial Centre, Singapore 049315
Course Fee:	S$300.00 (excluding GST)