Ability ID: A0040
Ability Description: Ability to translate data and test results into evaluative conclusions.
Work Roles with this Ability:
- Work Role ID: SP-RSK-002Work Role Name: Security Control AssessorWork Role Description: Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).Specialty Area(s): Risk Management
- Work Role ID: SP-SYS-001Work Role Name: Information Systems Security DeveloperWork Role Description: Designs, develops, tests, and evaluates information system security throughout the systems development life cycle.Specialty Area(s): Systems Development
- Work Role ID: SP-TST-001Work Role Name: System Testing and Evaluation SpecialistWork Role Description: Plans, prepares, and executes tests of systems to evaluate results against specifications and requirements as well as analyze/report test results.Specialty Area(s): Test and Evaluation