Due to the silo effect, many organizations have little communication between the CSAM (Cybersecurity Asset Management) & CITAD (Certification in IT Asset Disposition) departments. CITAD folks are always looking for ways to reduce their disposal costs and often they will decide to only audit and track hard drives that are being disposed of.

While capturing this info during the disposition process and getting a validation report from your vendor is a best practice, you will be leaving a huge documentation gap for your SAM team if you elect to forgo the audit/validation report from your disposition vendor. As a Hardware Asset Manager or ITAD Manager, you are trying to be responsible by controlling costs but in fact are creating a huge risk/liability for the SAM team to document compliance for software licensing on any asset class that requires software use tracking.


Click Here to Read the Rest


SOURCE ARCOA