PR.AA-01.197

Does your organization physically label all authorized hardware assets with unique identifiers for inventory tracking and servicing purposes?

Explanation

Physical labeling of hardware assets (such as servers, workstations, network devices, and peripherals) with unique identifiers ensures accurate tracking throughout their lifecycle and facilitates proper inventory management. This practice helps prevent unauthorized equipment from being connected to your network, simplifies asset management during audits, and enables efficient servicing and maintenance operations. Evidence of compliance could include photographs of labeled assets, a documented labeling standard/procedure, or an asset inventory report that references the physical labels used on hardware. The labeling system should be consistent and the identifiers should correspond to entries in your asset management system.

Implementation Example

Physically label authorized hardware with an identifier for inventory and servicing purposes

ID: PR.AA-01.197

Context

Function: PR: PROTECT
Category: PR.AA: Identity Management, Authentication, and Access Control
Sub-Category: Identities and credentials for authorized users, services, and hardware are managed by the organization

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Neil Cameron

Founder, ResponseHub