all InfoSec news
How do I audit IT software asset inventory management?
April 9, 2024, 11:01 p.m. | /u/Nervous-Fruit
cybersecurity www.reddit.com
ID.AM-02: Inventories of software, services, and systems managed by the organization are maintained.
How would I check the completeness and accuracy of our software asset inventory? What should I ask to see? I am looking to test this as part of a broader NIST audit but not sure how to verify compliance for this one.
Things I can think to ask for:
1. Software licenses
2. On-prem applications list
3. Third party applications …
accuracy ask asset asset inventory audit check cybersecurity framework inventory inventory management managed management nist nist 2.0 organization services software systems test
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Cyber Security Engineer
@ ASSYSTEM | Bridgwater, United Kingdom
Security Analyst
@ Northwestern Memorial Healthcare | Chicago, IL, United States
GRC Analyst
@ Richemont | Shelton, CT, US
Security Specialist
@ Peraton | Government Site, MD, United States
Information Assurance Security Specialist (IASS)
@ OBXtek Inc. | United States
Cyber Security Technology Analyst
@ Airbus | Bengaluru (Airbus)