πΌ ID.AM-04: Inventories of services provided by suppliers are maintained
- Contextual name: πΌ ID.AM-04: Inventories of services provided by suppliers are maintained
- ID:
/frameworks/nist-csf-v2.0/id-am/04 - Located in: πΌ Asset Management (ID.AM)
Descriptionβ
- Inventory all external services used by the organization, including third-party infrastructure-as-a-service (IaaS), platform-as-a-service (PaaS), and software-as-a-service (SaaS) offerings; APIs; and other externally hosted application services
- Update the inventory when a new external service is going to be utilized to ensure adequate cybersecurity risk management monitoring of the organization's use of that service
Similarβ
- Sections
/frameworks/nist-csf-v1.1/id-am/04/frameworks/nist-sp-800-53-r5/ac/20/frameworks/nist-sp-800-53-r5/sa/09/frameworks/nist-sp-800-53-r5/sr/02
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v1.1 β πΌ ID.AM-4: External information systems are catalogued | ||||
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-20 Use of External Systems | 5 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SA-9 External System Services | 8 | 1 | 1 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ SR-2 Supply Chain Risk Management Plan | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|