Task: Conduct Security Testing
Conduct Security Testing.
Disciplines: Information Security Discipline
Relationships
RolesPrimary Performer: Additional Performers:
InputsMandatory:
    		Optional:
    • None
    Outputs
      Main Description
      Conduct security testing.  The Security Architect will review the documented test results with the Project Team.
      Steps
      Prepare Security Test Scope
      1. Determine application requirements
      2. Determine scope of use for system
      3. Determine security scope for testing
      Execute Security Testing
      Document the test results
      Conduct Security Testing Report Review
      Coordinate Security Remediation efforts with the Project Team
      Obtain Security Testing Exceptions Sign-off from the Digital Security Council
      Enter exceptions into FICS and identify exceptions the system cannot support
      Add application to Security Testing Schedule

      Version and Release

      Unified Life Cycle (ULC): 5.1, November 3, 2014
      Phase Gates: 1.1, May 27, 2014
      Process Engineering Process (PEP): 1.1, May 27, 2014