{"id":1133,"date":"2024-07-16T21:55:14","date_gmt":"2024-07-16T21:55:14","guid":{"rendered":"https:\/\/www.tarleton.edu\/security-controls-catalog\/?page_id=1133"},"modified":"2024-09-06T21:19:52","modified_gmt":"2024-09-06T21:19:52","slug":"cm-8-system-component-inventory","status":"publish","type":"page","link":"https:\/\/www.tarleton.edu\/security-controls-catalog\/configuration-management-cm\/cm-8-system-component-inventory\/","title":{"rendered":"CM-8: System Component Inventory"},"content":{"rendered":"\n<h1 class=\"wp-block-heading has-large-font-size\">CM-8: System Component Inventory<\/h1>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>NIST Baseline: &nbsp;<\/strong>Low&nbsp;<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>DIR Required By: &nbsp;<\/strong>07\/20\/2023&nbsp;<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>Review Date: &nbsp;<\/strong>06\/26\/2024&nbsp;<\/h2>\n\n\n\n<ul class=\"wp-block-list its-nested-list\">\n<li>Information resource custodians must develop, document, and maintain a current inventory of the components of the information system and relevant ownership information that:&nbsp;&nbsp;&nbsp;&nbsp;\n<ul class=\"wp-block-list\">\n<li>Accurately reflects the current information system;&nbsp;&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>Includes all components within the authorization boundary of the information system;&nbsp;&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>Is at the level of granularity deemed necessary for tracking and reporting; and&nbsp;&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>Includes information deemed necessary to achieve effective information system component accountability; and&nbsp;&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>Review and update the information system component inventory annually. &nbsp;&nbsp;&nbsp;<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p><strong>Note: <\/strong>Additional inventory requirements are documented in <a href=\"https:\/\/www.tarleton.edu\/security-controls-catalog\/program-management-pm\/pm-5-system-inventory\/\" data-type=\"page\" data-id=\"1657\">Control PM-5, System Inventory<\/a>. Component inventories are included in the system security plans documented in <a href=\"https:\/\/www.tarleton.edu\/security-controls-catalog\/planning-pl\/pl-2-system-security-and-privacy-plans\/\" data-type=\"page\" data-id=\"1620\">Control PL-2, System Security and Privacy Plans<\/a>, and the annual report on the information security program documented in <a href=\"https:\/\/www.tarleton.edu\/security-controls-catalog\/planning-pl\/pl-1-planning-policy-and-procedures\/\" data-type=\"page\" data-id=\"1616\">Control PL-1, Security Planning Policy and Procedures<\/a>.&nbsp;<\/p>\n\n\n\n<hr class=\"wp-block-separator alignfull has-text-color has-tarleton-purple-color has-alpha-channel-opacity has-tarleton-purple-background-color has-background is-style-wide\"\/>\n\n\n\n<h3 class=\"wp-block-heading has-medium-font-size\">References\/Additional Resources<\/h3>\n\n\n\n<p><a href=\"https:\/\/statutes.capitol.texas.gov\/Docs\/GV\/htm\/GV.2054.htm#:~:text=Sec.%202054.068.%20%20INFORMATION%20TECHNOLOGY%20INFRASTRUCTURE%20REPORT.\" target=\"_blank\" rel=\"noreferrer noopener\">Tex. Gov\u2019t Code Section 2054.068<\/a>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CM-8: System Component Inventory NIST Baseline: &nbsp;Low&nbsp; DIR Required By: &nbsp;07\/20\/2023&nbsp; Review Date: &nbsp;06\/26\/2024&nbsp; Note: Additional inventory requirements are documented in Control PM-5, System Inventory. Component inventories are included in &#8230;<\/p>\n","protected":false},"author":1,"featured_media":580,"parent":1390,"menu_order":8,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"inline_featured_image":false,"advgb_blocks_editor_width":"","advgb_blocks_columns_visual_guide":"","footnotes":""},"class_list":["post-1133","page","type-page","status-publish","has-post-thumbnail","hentry"],"acf":[],"coauthors":[],"author_meta":{"author_link":"https:\/\/www.tarleton.edu\/security-controls-catalog\/author\/brian-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-3\/","display_name":"brian"},"relative_dates":{"created":"Posted 2 years ago","modified":"Updated 2 years ago"},"absolute_dates":{"created":"Posted on July 16, 2024","modified":"Updated on September 6, 2024"},"absolute_dates_time":{"created":"Posted on July 16, 2024 9:55 pm","modified":"Updated on September 6, 2024 9:19 pm"},"featured_img_caption":"","featured_img":false,"series_order":"","_links":{"self":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1133","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/comments?post=1133"}],"version-history":[{"count":0,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1133\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1390"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/media?parent=1133"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}