Deploy and maintain anti-malware software on all enterprise assets.
Centrally select and install malware detection and repair programs and update them regularly for preventive or regular scanning of computers and media.
Programs should check at least the following:
Malware protection systems automatically check for and install updates at desired intervals and also run the desired scans at the selected frequency without needed user actions.
The anti-malware software used by the organisation must be configured to automatically scan files. The scan should be done when a file is downloaded, opened and when it is opened from network storage.
The malware protection software used by the organisation must be configured to automatically scan websites. The scan should be done when accessing a website.
Our organization has defined policies in place to prevent or at least detect the use of unauthorized programs.