Quality is delighting customers
Start from the basics. OWASP (https://www.owasp.org/) is full of information about security testing of web applications. Other application types require same kind of knowledge. You won't learn security testing in a few days, you have to spend plenty of time with it. Also security testing requires plenty of technical knowledge.
Hi Teemu Thanks for the information