>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

6.3.2An inventory of bespoke and custom software, and third-party software components incorporated into bespoke and custom software is maintained to facilitate vulnerability and patch management.

>Requirement Description

An inventory of bespoke and custom software, and third-party software components incorporated into bespoke and custom software is maintained to facilitate vulnerability and patch management. Applicability Notes This requirement is a best practice until 31 March 2025, after which it will be required and must be fully considered during a PCI DSS assessment.

>Cross-Framework Mappings

NIST CSF 2.0

via NIST OLIR Catalog
GV.SC-01
Compare
GV.SC-03
Compare
GV.SC-04
Compare
GV.SC-07
Compare
GV.SC-09
Compare
ID.AM-02
Compare
ID.RA-01
Compare
PR.PS-02
Compare
PR.PS-06
Compare

SCF

AST-01
Compare
AST-02
Compare
AST-04.3
Compare
TDA-04.2
Compare
VPM-01.1
Compare
VPM-05.1
Compare

Ask AI

Configure your API key to use AI features.