...
- Auditor qualifications
- Evidence of iauditor ndependence through direct reporting line to the governing Board of Visitors
- Outline of audit methodology, including
- background on identity assurance
- identification of the departmental services being audited, and a brief description of the VTCA.
- audit objectives (the criteria categories identified by the InCommon Identity Assurance Profiles Bronze and Silver)
- Scope
- Multifactor alternative
- Opinion (positive attestation that the IdPO is in compliance with and meets the requirements for all criteria)
Scope:
Gap Analysis:
Management Assertion:
...