417

417 (NIST ID: T0013)

Task

Apply coding and testing standards, apply security testing tools including “‘fuzzing” static-analysis code scanning tools, and conduct code reviews.

Items denoted by a * are CORE KSATs for every Work Role, while other CORE KSATs vary by Work Role.


Core KSAT for the following Work Roles

Secure Software Assessor (Core) ID: 622 (NIST ID: SP-DEV-002) Category/Specialty Area: Securely Provision / Software Development
Workforce Element: Cybersecurity

Analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.

Software Developer (Core) ID: 621 (NIST ID: SP-DEV-001) Category/Specialty Area: Securely Provision / Software Development
Workforce Element: IT (Cyberspace)

Develops, creates, maintains, and writes/codes new (or modifies existing) computer applications, software, or specialized utility programs.

Additional KSAT for the following Work Roles

No Work Roles with Additional KSAT 417