[TASK] Refactor initialization of security operations in behat tests
This change leave the decision, if security should be initialized or
not to the respective behat context. As tests executing code, which
uses security features all need an initialized security component,
we cannot initialize only when steps of the security trait are called
in the tests explicitly.
Releases: master, 3.0