Competency Framework Overview

Introduction

The SDE Skills Competency Framework maps the skills and knowledge needed by Research Technical Professionals (RTPs) working with Secure Data Environments. It aligns with established industry models — the Five Safes and SATRE — while maintaining its unique focus on the technical skills required in secure research environments.

Framework Structure

A three-tier hierarchy with three defined proficiency levels at each competency item.

Hierarchy

1
Domains
Top-level categorisation
2
Subdomains
Mid-level grouping of related skills
3
Items
Specific competencies

Numbering Scheme

2Domain
.
3Subdomain
.
1Item

Each competency carries a unique reference — the first digit identifies the domain, the second the subdomain within it, and the third the individual item.

Proficiency Levels

EntryBasic understanding and application
MidIndependent application and implementation
SeniorStrategic oversight and leadership

Competency Domains

Six core domains aligned with both the Five Safes model and SATRE specification.

1
Safe Technology & Engineering
Technical implementation of secure systems
Five SafesSafe Settings

SATRE Coverage

1. Information Governance3 / 6
2. Computing Technology6 / 6
3. Data Management3 / 3
4. Supporting Capabilities2 / 2
Total14 / 17

Subdomains

Software EngineeringSystem ArchitectureInfrastructure & DeploymentTesting & Quality Assurance
2
Safe Data Management
Handling, processing, and governing data
Five SafesSafe Data

SATRE Coverage

1. Information Governance4 / 6
2. Computing Technology4 / 6
3. Data Management3 / 3
4. Supporting Capabilities1 / 2
Total12 / 17

Subdomains

Data Engineering & ProcessingData Quality ManagementData GovernanceResearch Data Preparation
3
Safe Access & Identity
User authentication, authorisation, and access control
Five SafesSafe People

SATRE Coverage

1. Information Governance6 / 6
2. Computing Technology5 / 6
3. Data Management2 / 3
4. Supporting Capabilities0 / 2
Total13 / 17

Subdomains

Authentication & AuthorisationIdentity ManagementUser Provisioning & Lifecycle
4
Safe Outputs & Disclosure Control
Ensuring non-disclosive research outputs
Five SafesSafe Outputs

SATRE Coverage

1. Information Governance4 / 6
2. Computing Technology3 / 6
3. Data Management3 / 3
4. Supporting Capabilities1 / 2
Total11 / 17

Subdomains

Statistical Disclosure ControlOutput Review & ManagementSafe Data Publication
5
Safe Projects & Operations
Project management and operational excellence
Five SafesSafe Projects

SATRE Coverage

1. Information Governance6 / 6
2. Computing Technology6 / 6
3. Data Management2 / 3
4. Supporting Capabilities2 / 2
Total16 / 17

Subdomains

Project ManagementOperational ExcellenceResearch Support & Innovation
6
Safe Governance & Compliance
Meeting regulatory and ethical requirements
Five SafesSpans all five

SATRE Coverage

1. Information Governance6 / 6
2. Computing Technology6 / 6
3. Data Management3 / 3
4. Supporting Capabilities1 / 2
Total16 / 17

Subdomains

Information GovernanceRegulatory ComplianceSecurity ManagementRisk Management

Standards Alignment

How each domain maps to the Five Safes model and SATRE specification.Full mapping detail →

Framework DomainFive Safes Principle
Safe Technology & EngineeringSafe Settings
Safe Data ManagementSafe Data
Safe Access & IdentitySafe People
Safe Outputs & Disclosure ControlSafe Outputs
Safe Projects & OperationsSafe Projects
Safe Governance & ComplianceSpans all five

Applications & Enhanced Areas

How the framework is used, and specialist areas it incorporates.

Application
Career Development
Structured progression pathways for Research Technical Professionals
Application
Training Pathways
Learning journeys aligned to competency levels and domain needs
Application
Skills Gap Analysis
Identify and quantify capability gaps within teams and organisations
Application
Role Specifications
Inform job descriptions and grade expectations with defined competencies
Application
Recruitment & Retention
Attract and retain talent using consistent, transparent competency standards
Enhanced Area
Healthcare Data Models & Standards
FHIR, SNOMED, HL7 and NHS data standards applied in secure research contexts
Enhanced Area
Enterprise Solution Development
Building scalable, production-grade systems within NHS and public sector environments
Enhanced Area
Component-Based Architecture
Modular, reusable design patterns for maintainable and extensible TRE systems
Enhanced Area
Healthcare Regulatory Frameworks
DSP Toolkit, DTAC, and NHS-specific compliance requirements for data environments
Enhanced Area
Code Publication & Reusability
Open-source practices, reproducible research, and code sharing within TRE constraints
Enhanced Area
Resource & Cost Management
Cloud cost optimisation, capacity planning, and efficient use of research compute budgets
Enhanced Area
Community Engagement
Stakeholder communication, open science advocacy, and cross-institutional collaboration