# Indicators for security testing
<a name="indicators-for-security-testing"></a>

Identify software vulnerabilities, threats, and risks to safeguard against unauthorized access and misconfiguration. This specialized testing aims to identify potential security flaws and reinforce the system's defenses.

**Topics**
+ [[QA.ST.1] Evolve vulnerability management processes to be conducive of DevOps practices](qa.st.1-evolve-vulnerability-management-processes-to-be-conducive-of-devops-practices.md)
+ [[QA.ST.2] Normalize security testing findings](qa.st.2-normalize-security-testing-findings.md)
+ [[QA.ST.3] Use application risk assessments for secure software design](qa.st.3-use-application-risk-assessments-for-secure-software-design.md)
+ [[QA.ST.4] Enhance source code security with static application security testing](qa.st.4-enhance-source-code-security-with-static-application-security-testing.md)
+ [[QA.ST.5] Evaluate runtime security with dynamic application security testing](qa.st.5-evaluate-runtime-security-with-dynamic-application-security-testing.md)
+ [[QA.ST.6] Validate third-party components using software composition analysis](qa.st.6-validate-third-party-components-using-software-composition-analysis.md)
+ [[QA.ST.7] Conduct proactive exploratory security testing activities](qa.st.7-conduct-proactive-exploratory-security-testing-activities.md)
+ [[QA.ST.8] Improve security testing accuracy using interactive application security testing](qa.st.8-improve-security-testing-accuracy-using-interactive-application-security-testing.md)