>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

2.2.2Asset Inventory and Classification

>Control Description

FRFIs should maintain a current and comprehensive asset management system, or inventory, that catalogues technology assets throughout their life cycle. Based on the FRFI's risk tolerance, this may include assets owned or leased by a FRFI, and third-party assets that store or process FRFI information or provide critical business services. The asset management system, or inventory, should be supported by: Processes to categorize technology assets based on their criticality and/or classification. These processes should identify critical technology assets that are of high importance to the FRFI, or which could attract threat actors and cyber attacks, and therefore require enhanced cyber protections; and Documented interdependencies between critical technology assets, where appropriate, to enable proper change and configuration management processes, and to assist in response to security and operational incidents, including cyber attacks.

>Cross-Framework Mappings

SCF

AST-01
Compare
AST-01.1
Compare
AST-02
Compare
BCD-02
Compare
DCH-02
Compare
DCH-06.2
Compare

Ask AI

Configure your API key to use AI features.