>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

PM-5System Inventory

>Control Description

Having a current system inventory is foundational for C-SCRM. Not having a system inventory may lead to the enterprise’s inability to identify system and supplier criticality, which would result in an inability to conduct C-SCRM activities. To ensure that all applicable suppliers are identified and categorized for criticality, enterprises should include relevant supplier information in the system inventory and maintain its currency and accuracy. Enterprises should require their prime contractors to implement this control and flow down this requirement to relevant sub-tier contractors. Departments and agencies should refer to Appendix F to implement this guidance in accordance with Executive Order 14028, Improving the Nation’s Cybersecurity.

>Cross-Framework Mappings

SCF

AST-01
Compare
AST-02
Compare

Ask AI

Configure your API key to use AI features.