Anti-virus software

Anti-virus software is a ubiquitous method of protection against malicious software.

Anti-virus is most commonly thought about on end-user devices, but may also be relevant for your servers if they collect and execute files. Anti-virus software scans files, programs, and applications looking for code that matches to known malicious software code stored in the anti-virus definitions.

Anti-virus software, like your operating systems, is only as good as the versions that are maintained. Security threats are evolving so it�s important to ensure the anti-virus definitions are regularly updated. These are usually set to automatically push updates to user devices but it�s also important to have periodic monitoring to ensure they are kept up to date. Users can delay the updates and may form a habit of doing so, which can leave the anti-virus definitions outdated, leaving the device exposed.

The CDR Perspective

Anti-virus software forms part of your anti-malware practices. The CDR requires; anti-virus and anti-malware solutions are implemented on endpoint devices and on servers to detect and remove malware from the CDR data environment and are updated on a regular basis. End-user systems are updated with the latest virus definitions when they connect to the network. Reports or dashboards highlighting compliance metrics are regularly generated and monitored, and non-compliant items are actioned as soon as practicable.

About AssuranceLab

AssuranceLab is a modern cybersecurity audit firm that provides assurance reports (ASAE 3150, SOC 1/2). We're experts in the latest software and cloud providers. We guide your team through the compliance practices in a way that fits your environment and culture. We work closely with clients through our agile and collaborative approach; saving time, costs, and headaches along the way.