Considering the sensitivity of the data and the program’s high profile, security will be a high priority. Securing the NIF will require the successful completion of: (1) an independent risk assessment that includes vulnerability testing to evaluate the application’s safeguards against hackers, and (2) an independent security audit prior to implementation that evaluates and tests manual and automated controls within critical control areas that include, but not limited to: access, authentication, accountability, data integrity, and communication.