Mapping control statements to third-party evidence

You can use the Symantec Content Studio to help you map control statements to evidence from third-party providers. Evidence for third-party providers is imported from a .csv file created by the third-party data collector. When you map third-party evidence to the control statements, you can use the third-party evidence to support your compliance

Note:

When you map control statements to third-party evidence, you must modify the Microsoft SQL Server databases used by the Control Compliance Suite. You should exercise caution when making these changes.

When you map the control statements, you must do the following:

The evaluation instance is supplied by Symantec Professional Services when the third-party evidence database is created.

To determine a control statement ID in Symantec Content Studio

  1. In the Symantec Content Studio, click a control statement.

  2. In the details pane, click Properties.

  3. In the Properties dialog, click Properties to copy the control statement ID.

To use SQL Server Management Studio to determine a control statement ID

To create a SQL script to perform the mapping

More Information

About the Evidence Management system

About a custom evidence provider

General sequence of configuring an evidence provider