Dynamics AX 2012 security verification and testing

Hi all. New to AX 2012 here. I have some fundamental questions about how security-based changes are tracked, verified, and tested. First part of my question relates to whether AX has the capability to export security structures by role or user. Where I’m going with that is being able to trace a security change to assess the impact. The second part of the question is regarding testing of these security changes. Coming from a development background I’m use to having IDEs with automated testing tools. I was curious if AX via the AOT or SDT had similar capabilities or is it tested primarily via sight and click-throughs? Thanks in advance!