all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How do I audit IT software asset inventory management?

Add to bookmarks
April 9, 2024, 11:01 p.m. | /u/Nervous-Fruit

cybersecurity www.reddit.com

NIST 2.0 has the following framework requirement:

ID.AM-02: Inventories of software, services, and systems managed by the organization are maintained.

How would I check the completeness and accuracy of our software asset inventory? What should I ask to see? I am looking to test this as part of a broader NIST audit but not sure how to verify compliance for this one.

Things I can think to ask for:
1. Software licenses
2. On-prem applications list
3. Third party applications …

accuracy ask asset asset inventory audit check cybersecurity framework inventory inventory management managed management nist nist 2.0 organization services software systems test

Visit resource

More from www.reddit.com / cybersecurity

New Android security flaw lets hackers seize control of apps — uninstall these immediately | … 3 hours ago | www.reddit.com
android android security apps control +8
X 2FA Paywall 6 hours ago | www.reddit.com
2fa apps bad bad security +16
how did you break into cybersecurity 9 hours ago | www.reddit.com
cyber cyber security cybersecurity cybersecurity cyber +4
CIS Benchmarks - Intune vs GPO? 9 hours ago | www.reddit.com
benchmarks can cis cis benchmarks +6
How to lateral movement in Windows domain. 10 hours ago | www.reddit.com
advanced articles can certification +11
How to: Parsing AuditD Syslog in Microsoft Sentinel with a function and combining the events … 12 hours ago | www.reddit.com
article auditd cybersecurity detection +11
What do I need to start an ISO 27001 implementation project? 13 hours ago | www.reddit.com
certification cybersecurity don hello +10
What are the pros and cons of virtual patching? 14 hours ago | www.reddit.com
cons cybersecurity patching virtual +1
Cybersec is the best career to get into in 2024.Change my mind. 16 hours ago | www.reddit.com
career change cybersec cybersecurity +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com
View more jobs