CCI-002624

Configure malicious code protection mechanisms to perform real-time scans of files from external sources at endpoint; and/or network entry and exit points as the files are downloaded, opened, or executed in accordance with organizational policy.

Rule

Severity: Medium

The ALG providing content filtering must be configured to perform real-time scans of files from external sources at network entry/exit points as they are downloaded and prior to being opened or executed.

Rule

Severity: Medium

The IDPS must perform real-time monitoring of files from external sources at network entry/exit points.

Rule

Severity: Medium

The Juniper Networks SRX Series Gateway IDPS must perform real-time monitoring of files from external sources at network entry/exit points.

Rule

Severity: Medium

Exchange antimalware agent must be enabled and configured.

Rule

Severity: High

The TPS must generate a log record so an alert can be configured to, at a minimum, the system administrator when malicious code is detected.

Patternfly

PatternFly elements

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity

Modules