What aspect of vulnerability management reporting is primarily concerned with maintaining a record of all approved and implemented changes to an organization's IT infrastructure?
Patching
Compensating controls
Awareness, education, and training
Configuration management