Skip to main content

πŸ’Ό CM-8 System Component Inventory

  • Contextual name: πŸ’Ό CM-8 System Component Inventory
  • ID: /frameworks/nist-sp-800-53-r5/cm/08
  • Located in: πŸ’Ό CM Configuration Management

Description​

a. Develop and document an inventory of system components that:

  1. Accurately reflects the system;
  2. Includes all components within the system;
  3. Does not include duplicate accounting of components or components assigned to any other system;
  4. Is at the level of granularity deemed necessary for tracking and reporting; and
  5. Includes the following information to achieve system component accountability: [Assignment: organization-defined information deemed necessary to achieve effective system component accountability]; and b. Review and update the system component inventory [Assignment: organization-defined frequency].

Similar​

  • Sections
    • /frameworks/aws-fsbp-v1.0.0/config/01
    • /frameworks/aws-fsbp-v1.0.0/fsx/02
    • /frameworks/aws-fsbp-v1.0.0/service-catalog/01
    • /frameworks/aws-fsbp-v1.0.0/ssm/01
    • /frameworks/aws-fsbp-v1.0.0/ssm/03
  • Internal
    • ID: dec-c-cc75dbf4

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό AWS Foundational Security Best Practices v1.0.0 β†’ πŸ’Ό [Config.1] AWS Config should be enabled and use the service-linked role for resource recording1
πŸ’Ό AWS Foundational Security Best Practices v1.0.0 β†’ πŸ’Ό [FSx.2] FSx for Lustre file systems should be configured to copy tags to backups
πŸ’Ό AWS Foundational Security Best Practices v1.0.0 β†’ πŸ’Ό [ServiceCatalog.1] Service Catalog portfolios should be shared within an AWS organization only
πŸ’Ό AWS Foundational Security Best Practices v1.0.0 β†’ πŸ’Ό [SSM.1] Amazon EC2 instances should be managed by AWS Systems Manager
πŸ’Ό AWS Foundational Security Best Practices v1.0.0 β†’ πŸ’Ό [SSM.3] Amazon EC2 instances managed by Systems Manager should have an association compliance status of COMPLIANT

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό FedRAMP High Security Controls β†’ πŸ’Ό CM-8 System Component Inventory (L)(M)(H)41
πŸ’Ό FedRAMP Low Security Controls β†’ πŸ’Ό CM-8 System Component Inventory (L)(M)(H)1
πŸ’Ό NIST CSF v2.0 β†’ πŸ’Ό ID.AM-01: Inventories of hardware managed by the organization are maintained3
πŸ’Ό NIST CSF v2.0 β†’ πŸ’Ό ID.AM-02: Inventories of software, services, and systems managed by the organization are maintained7

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CM-8(1) System Component Inventory _ Updates During Installation and Removal
πŸ’Ό CM-8(2) System Component Inventory _ Automated Maintenance1
πŸ’Ό CM-8(3) System Component Inventory _ Automated Unauthorized Component Detection
πŸ’Ό CM-8(4) System Component Inventory _ Accountability Information
πŸ’Ό CM-8(5) System Component Inventory _ No Duplicate Accounting of Components
πŸ’Ό CM-8(6) System Component Inventory _ Assessed Configurations and Approved Deviations
πŸ’Ό CM-8(7) System Component Inventory _ Centralized Repository
πŸ’Ό CM-8(8) System Component Inventory _ Automated Location Tracking
πŸ’Ό CM-8(9) System Component Inventory _ Assignment of Components to Systems

Policies (1)​

PolicyLogic CountFlags
πŸ“ AWS Account Config is not enabled in all regions 🟒1🟒 x6