Analyze Test Output and Generate a Report
Security experts must be able to analyze log and test data, and report this information in meaningful ways, to senior management teams so they are alert of possible risks or harm, and make informed security decisions.
Organizations usually have different levels of management. Security professionals need to be able to provide appropriate reports for each of these different levels of management.
For senior executives, vulnerability scan data would be rolled up into meaningful business metrics and key risk indicators to inform senior management of any appreciable changes in risk levels.
The type of auditing being performed can also determine the type of reports that must be used.
In addition to all this, an information security professional must know the meaning of data and transforming them for various purposes and different audiences. In this case, he has been able to articulate the need for resources – professionally. The advantage of this is that it will be easier for him to get the necessary funding for the tools as well as the additional staff.