*Scan all impacted systems to ensure the patch or mitigations are present and the risk associated with the vulnerability has been reduced as expected (Task ID: R1-9628)

*Test all identified mitigations or patches to make sure they remove or mitigate the vulnerability as expected with no negative impacts (Task ID: R1-9629)

*Analyze vulnerabilities for business impact (Task ID: R1-9326)

*Develop a method to characterize vulnerabilities and score them to determine risk (Task ID: R1-9603)

*Develop a process for scoring the risk associated with identified vulnerabilities that takes into account how exploitable they are to develop priotization recommendations for mitigation (Task ID: R1-9294)

*Develop a process to prioritize and create job tickets for analysis and distribution of information to specific receipents (Task ID: R1-9229)

*Alert END users of potential risks and vulnerabilities that they may be able to mitigate (Task ID: R1-9314)

*Coordinate with other departments to ensure that routine business operations are not impacted during testing (Task ID: R1-9399)

*Develop a RACI (Responsible, Accountable, Consulted, Informed) matrix to ensure all roles clearly understand their responsibilities in the testing process. (Task ID: R1-9404)

*Identify all systems that may be affected by testing (Task ID: R1-9406)

*Identify threat actors (Task ID: R1-9331)

*Report vulnerabilities to fellow staff and stakeholders (Task ID: R1-9244)

*Coordinate efforts with the vendor to develop an understanding of the component and security implications. (Task ID: R1-9298)

*Coordinate with external governments on threat intelligence (Task ID: R1-9596)