Competency Framework Overview
The SDE Skills Competency Framework is designed to map the skills and knowledge needed by Research Technical Professionals (RTPs) working with Secure Data Environments. The framework aligns with established industry models such as the Five Safes and Standard Architecture for Trusted Research Environments (SATRE) specifications, while maintaining its unique focus on the technical skills required in secure research environments.
Framework Structure
The framework is organised as a 3-level hierarchy:
- Domains - Top-level categorization of competencies
- Subdomains - Mid-level grouping of related skills
- Items - Specific competencies with defined skill levels
For each competency item, we define three levels of proficiency: - Entry-level - Basic understanding and application - Mid-level - Independent application and implementation - Senior-level - Strategic oversight and leadership
Competency Domains
Our competency framework is organised around six core domains that align with both the Five Safes model and SATRE specification:
- Safe Technology & Engineering - Technical implementation of secure systems
- Safe Data Management - Handling, processing, and governing data
- Safe Access & Identity - User authentication, authorization, and access control
- Safe Outputs & Disclosure Control - Ensuring non-disclosive research outputs
- Safe Projects & Operations - Project management and operational excellence
- Safe Governance & Compliance - Meeting regulatory and ethical requirements
Mapping to Five Safes
The framework is designed to align with and support the Five Safes model:
| Competency Framework Domain | Related Five Safes Principle |
|---|---|
| Safe Technology & Engineering | Safe Settings |
| Safe Data Management | Safe Data |
| Safe Access & Identity | Safe People |
| Safe Outputs & Disclosure Control | Safe Outputs |
| Safe Projects & Operations | Safe Projects |
Governance & Compliance spans across all Five Safes principles.
Mapping to SATRE
The framework also aligns with the Standard Architecture for Trusted Research Environments (SATRE) specification, mapping competency domains to key SATRE pillars and capabilities. For example:
| Competency Framework Domain | Example SATRE Capabilities |
|---|---|
| Safe Technology & Engineering | End user computing, Infrastructure management |
| Safe Data Management | Data lifecycle management, Security levels and tiering |
| Safe Access & Identity | Identity and access management, Member accreditation |
| Safe Outputs & Disclosure Control | Output management |
| Safe Projects & Operations | Training delivery and management, Business continuity |
| Safe Governance & Compliance | Risk management, Study management |
While SATRE defines the capabilities of a Trusted Research Environment / Secure Data Environment, our competency framework defines the skills required to develop, deploy and manage those capabilities.
Read more about how this competency framework is related to existing standards.
Framework Applications
This competency framework serves multiple purposes:
- Supporting career development for RTPs
- Guiding training and learning pathways
- Identifying skill gaps in teams and organizations
- Creating job descriptions and role specifications
- Supporting recruitment and retention strategies
Enhanced Competency Areas
The framework has been enhanced to incorporate specialised areas critical to Secure Data Environments:
- Healthcare Data Models & Standards - Working with specialised healthcare data structures like OMOP, FHIR
- Enterprise Solution Development - Building production-ready, scalable solutions
- Component-Based Architecture - Designing modular and reusable system components
- Healthcare Regulatory Frameworks - Implementing NHS-specific standards (DSPT, DTAC)
- Code Publication & Reusability - Sharing code securely while promoting reuse
- Resource & Cost Management - Optimizing cloud resources and managing costs
- Community Engagement - Building networks and sharing knowledge across SDEs
This framework represents an initial mapping of competencies from both theoretical frameworks and real-world skills needed by Research Technical Professionals responsible for building, deploying and managing Trusted Research Environment / Secure Data Environments.