>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

CM-8(4)Information System Component Inventory

PBMM (P2)
Secret (P2)
Operational

>Control Description

INFORMATION SYSTEM COMPONENT INVENTORY | ACCOUNTABILITY INFORMATION The organization includes in the information system component inventory information, a means for identifying by [Selection (one or more): name; position; role], individuals responsible/accountable for administering those components.

>Supplemental Guidance

Identifying individuals who are both responsible and accountable for administering information system components helps to ensure that the assigned components are properly administered and organizations can contact those individuals if some action is required (e.g., component is determined to be the source of a breach/compromise, component needs to be recalled/replaced, or component needs to be relocated).

>Tailoring Guidance

This security control/enhancement is considered to be best practice. Consequently, inclusion in a departmental profile is strongly encouraged in most cases.

Ask AI

Configure your API key to use AI features.