Software security play key role to keep software application user’s personal information safe from the hackers who breach defenses of the software and exploit weaknesses in it. In software development, most of the time companies give less priority for security while developing the software because of lack of skilled professional or less budget and time constraints. The software security testing main goal is to identify the all possible loopholes and weakness in the system before it starts using by the end customers. It is important to consider the security testing in each phase of the systems development life cycle (SDLC) and it needs to cover the confidentiality, integrity, authentication, availability, authorization and non-repudiation of the system. The making software error free with security issues, software test engineer need to have an effective strategy to mitigate security risks. This paper emphasizes on the possibilities of lean canvas design for the security test strategy building in the software testing process.