How can we go about ensuring auditing is completely turned off within our environment?

CA API Gateway

Please ensure you have turned off audits; the ultimate way to turn off audits is: 

1. make sure every instance of "Add Audit Detail" is Type=Log instead of Type=Audit 
2. Add a custom audit sink policy, remove all the assertions from it, and only have a "continue processing" 
3. set the audit.messageThreshold and audit.detailThreshold to WARNING or SEVERE, depending on what information you want to keep in your ssg logs.