Compared to functional requirements, security requirements are often neglected. What is missing is a systematic approach to implementing security effectively and efficiently. Security already starts with the first development steps: With Security by Design, the security of software, systems and products becomes an integral aspect at the beginning of development - not a downstream step. This also includes regular security tests of software and systems. After all, almost all software security incidents are caused by attackers exploiting known vulnerabilities - and are therefore avoidable. The introduction of a security testing process, structured risk analyses, penetration tests and hacking allow security-relevant vulnerabilities to be uncovered and ...