Documentation Index

Fetch the complete documentation index at: https://kb.northerndatasolutions.com/llms.txt

Use this file to discover all available pages before exploring further.

CIS-8.1.1.5 — Use a Passive Asset Discovery Tool

  • Published on May 3, 2026
  • 1 minute(s) read
  • CT
 Prev Next

CIS-8.1.1.5 — Use a Passive Asset Discovery Tool

Domain: CIS Control 1  |  Safeguard: CIS-8.1.1.5  |  Asset Class: Devices  |  Security Function: Detect  |  Source: CIS Controls v8.1.2 (March 2025)

Implementation Groups:

IG1IG2IG3

Use a passive discovery tool to identify assets connected to the enterprise's network. Review and use scans to update the enterprise's asset inventory at least weekly, or more frequently.

Executive Summary (For Leadership and the Board)

CIS Safeguard CIS-8.1.1.5 sits inside Control 1 (Devices / Detect) and reads: Use a passive discovery tool to identify assets connected to the enterprise's network. Review and use scans to update the enterprise's asset inventory at least weekly, or more frequently. The Safeguard is most rigorously expected at IG3. Mature programs treat this as a measured, recertified, and audit-evidenced control rather than a one-time configuration. The Safeguard maps to NIST SP 800-53 Rev. 5 CM-8, CM-2/3, CA-7 and to NIST CSF 2.0 ID.AM.

Tags: CIS-8.1.1.5, cis-controls, cis-v8-1, ig3, control-1, asset-class-devices, function-detect

Related articles