42 Reviewing standards and practices to determine conformity with certification standards other than for governmental regulatory purposes in the fields of information technology, electronic information security management, electronic information privacy, information technology selection, information technology purchasing, and information technology implementation; performing scientific and technical research in the fields of information technology, electronic information security management, electronic information privacy, information technology selection, information technology purchasing, and information technology implementation; computer security advisory and consulting services in the fields of information technology, electronic information security management, electronic information privacy, information technology selection, information technology purchasing, and information technology implementation; evaluating organizations to determine whether the organizations conform to established standards and practices other than for governmental regulatory purposes in the fields of information technology, electronic information security management, electronic information privacy, information technology selection, information technology purchasing, and information technology implementation; testing, analysis and evaluation of the services of others to determine conformity with industry standards and practices other than for governmental regulatory purposes in the fields of information technology, electronic information security management, electronic information privacy, information technology selection, information technology purchasing, and information technology implementation; testing, analysis, and evaluation of the electronic information security management systems of others for purposes of ranking and to assure compliance with industry standards other than for governmental regulatory purposes; testing, analysis and evaluation of electronic information technology systems and networks of others for the purposes of enabling organizations to ensure that such systems and networks comply with government and industry standards other than for governmental regulatory purposes; testing, analysis, and evaluation of the knowledge, skills and abilities of others in the fields of information technology, electronic information security management, electronic information privacy, information technology selection, information technology purchasing, and information technology implementation to determine conformity with industry standards other than for governmental regulatory purposes