Overview The security audit tool provides organizations with an overview of the critical questions to ask when assessing the data security of an e-discovery vendor or partner, or when performing a self-analysis." The evaluation allows the assessor to determine the level of risk the organization may be assuming by engaging the vendor or partner and to make suggestions to improve security practices and enhance the service provided.
The Audit and Evaluation is comprised of seven sections: A. General B. Security & Risk Management C. Asset Security D. Communications & Network Security E. Identity & Access Management F. Security Operations G. Software Development Security