Your organization has entered into an agreement with a third-party vendor for cloud storage services. As part of the due diligence process, it is important to assess the security responsibilities assigned to the vendor. Which document should you review to understand the security tasks that the vendor is obligated to perform?
Network topology diagram
Vendor's security policy documents
Incident report
Responsibility matrix