Task: Review Vendor Artifacts / Project Documents

Review vendor documentation and other project documents for Information Security requirements.

Relationships

Roles	Primary: Security Architect	Additional:	Assisting:
Inputs	Mandatory: Project Artifacts Vendor Documentation	Optional: None	External: None
Outputs	Artifacts Reviewed Vendor Documentation Reviewed

Main Description

Review vendor documentation and other project documents to ensure the vendor is addressing all relevant Information Security requirements. The Security Architect will also determine if potential security issues exist based on the supplied documentation.

Steps

Review vendor documentation and other project documents

Provide security requirements

Identify security-related issues

Communicate security requirements and issues to the Project Manager

Properties

Predecessor	Review Vendor Contract
Multiple Occurrences
Event Driven
Ongoing
Optional
Planned
Repeatable

Version and Release

Unified Life Cycle (ULC): 5.1, November 3, 2014
Phase Gates: 1.1, May 27, 2014
Process Engineering Process (PEP): 1.1, May 27, 2014