NIST’s IT Asset Management guide also explains how commercial technology can help organizations locate and configure networked devices and applications, the agency said Monday.
âFollowing this guide will help organizations better manage their cybersecurity risk,” said Nate Lesser, deputy director at the NIST-run National Cybersecurity Center of Excellence.
âIdentifying the scope of an organizationâs risk is key to proper asset management, as reflected by ‘identify’ being the first function in the cybersecurity framework NIST developed for critical infrastructure,” Lesser added.
The guide offers instructions for the integration of separate data systems into a single IT asset management platform, as well as suggests best practices for security engineers.
NIST produced the document in collaboration with 10 technology vendors.