Define the audit log record format - Specify retention period and archival strategy - Describe at least three audit queries that security/compliance would run regularly