Back to Dashboard
Req 5: Protect All Systems and Networks from Malicious Software
Use and regularly update anti-malware solutions.
Responsibility
Shared
Compliance Status
In Progress
95%Overview
Malware is a significant threat to all systems. This requirement ensures that anti-malware mechanisms are deployed on all systems commonly affected by malicious software and are kept up to date.
Key Actions for Compliance
A non-exhaustive list of actions your organization should take to meet this requirement.
- Deploy anti-malware software on all system components.
- Ensure that all anti-malware mechanisms are maintained and kept current.
- Perform periodic scans and keep audit logs of malware scan results.
- For systems not commonly affected by malware, perform periodic evaluations to identify and evaluate evolving malware threats.
Testing Procedures (Simplified)
How auditors may verify that this requirement is met.
- Examine system configurations to confirm that anti-malware solutions are deployed and active.
- Review update logs to verify that anti-malware signatures are being updated regularly.
- Check scan logs to ensure periodic scans are being performed.