You can’t secure what you don’t know, thus making a comprehensive asset inventory an invaluable resource in your cybersecurity program. Likewise, business continuity, resilience, and incident response plans are not complete without understanding your assets. ICS cyber security firm Dragos expands asset management from a function to a framework in their recent whitepaper, Collection Management Frameworks – Beyond Asset Inventories for Preparing for and Responding to Cyber Threats. The paper explains five phases of a CMF: develop requirements, develop the collection plan, implement, test, and update the collection plan. As an additional resource, SANS has an archived webcast covering this whitepaper, along with examples for implementation. Dragos