- Auditor qualifications
- Evidence of iauditor ndependence auditor independence through direct reporting line to the governing Board of Visitors
- Outline of audit methodology, including
- background on identity assurance
- identification of the departmental services being audited, and a brief description of the VTCA.
- audit objectives (the criteria categories identified by the InCommon Identity Assurance Profiles Bronze and Silver)
- Multifactor alternative
- Opinion (positive attestation that the IdPO is in compliance with and meets the requirements for all criteria)