ID.AM-03—Representations of the organization’s authorized network communication and internal and external network data flows are maintained
>Control Description
This asset management subcategory ensures that representations of the organization’s authorized network communication and internal and external network data flows are maintained. Key activities include: Maintain baselines of communication and data flows within the organization’s wired and wireless networks; Maintain baselines of communication and data flows between the organization and third parties; Maintain baselines of communication and data flows for the organization’s infrastructure-as-a-service (IaaS) usage.
>Cross-Framework Mappings
NIST SP 800-53 r5
via NIST CSF 2.0 Concept Crosswalk>Informative References
Official NIST mappings to external frameworks and standards. Source: NIST CSF 2.0
CCMv4.0
DSP-05
DSP-10
IPY-01
IVS-03
IVS-09
LOG-05
CIS Controls v8.0
3.8
CIS Controls v8.1
3.8
CRI Profile v2.0
ID.AM-03
ID.AM-03.01
CSF v1.1
ID.AM-3
DE.AE-1
ISO/IEC 27001:2022
Mandatory Clause: None
Annex A Controls: 5.14
Annex A Controls: 8.20
Annex A Controls: 8.21
Annex A Controls: 8.22
NICE Framework
DD-WRL-002
DD-WRL-009
IO-WRL-002
IO-WRL-003
IO-WRL-004
IO-WRL-005
OG-WRL-015
PCI DSS
1.2.3
1.2.4
12.5.2
SCF
AST-04
DCH-19
SP 800-171 Rev 3
03.12.05
03.15.02
SP 800-53 Rev 5.1.1
AC-04
CA-03
CA-09
PL-02
PL-08
PM-07
SP 800-53 Rev 5.2.0
AC-04
CA-03
CA-09
PL-02
PL-08
PM-07
SP-800-37 Rev 2
RMF Prepare Step (System Level): TASK P-11 Authorization Boundary
RMF Prepare Step (System Level): TASK P-13 Information Life Cycle
RMF Prepare Step (System Level): TASK P-16 Enterprise Architecture
Ask AI
Configure your API key to use AI features.