Requirement 5: Protect all systems against malware and regularly update anti-virus software or programs
Malicious software, commonly referred to as "malware"-including viruses, worms, and Trojans-enters the network during many business-approved activities including employee e-mail and use of the Internet, mobile computers, and storage devices, resulting in the exploitation of system vulnerabilities. Anti-virus software must be used on all systems commonly affected by malware to protect systems from current and evolving malicious software threats. Additional anti-malware solutions may be considered as a supplement to the anti-virus software; however, such additional solutions do not replace the need for anti-virus software to be in place.
| Requirement 5 | Protect all systems against malware and regularly update anti-virus software or programs |
|---|---|
| 5.4 | Ensure that security policies and operational procedures for managing vendor defaults and other security parameters are documented, in use, and known to all affected parties. Update: v3.0 November 2013 |
Copyright © Cloud Software Group, Inc. All rights reserved.