Skip to content
ATO Pathways
  Log In

CCI-004964

Automatically update malicious code protection mechanisms as new releases are available in accordance with organizational configuration management policy.

Logo
1

Rule

Severity: Medium
The ALG providing content filtering must update malicious code protection mechanisms and signature definitions whenever new releases are available in accordance with organizational configuration management procedures.
Logo
1

Rule

Severity: Medium
The Cisco ASA must be configured to install updates for signature definitions and vendor-provided rules.
Logo
1

Rule

Severity: Medium
The Cisco ASA must be configured to automatically install updates to signature definitions and vendor-provided rules.
Logo
1

Rule

Severity: Medium
The IDPS must automatically update malicious code protection mechanisms as new releases are available in accordance with organizational configuration management policy.
Logo
1

Rule

Severity: Medium
The Juniper Networks SRX Series Gateway IDPS must automatically install updates to signature definitions.
Logo
1

Rule

Severity: Medium
The Mainframe Product must update malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy.
Logo
1

Rule

Severity: Medium
Exchange antimalware agent must be enabled and configured.
Logo
1

Rule

Severity: Medium
The Exchange malware scanning agent must be configured for automatic updates.
Logo
1

Rule

Severity: Medium
The Palo Alto Networks security platform must automatically update malicious code protection mechanisms.
Logo
1

Rule

Severity: Medium
The Palo Alto Networks security platform must automatically install updates to signature definitions, detection heuristics, and vendor-provided rules.
Logo
1

Rule

Severity: Medium
The TPS must automatically install updates to signature definitions, detection heuristics, and vendor-provided rules.
Logo
1

Rule

Severity: Medium
The Trellix Application Control Options Advanced Threat Defense (ATD) settings, if being used, must be confined to the organizations enclave.
Logo
1

Rule

Severity: Medium
The Trellix Application Control Options Reputation setting must be configured to use the Trellix Global Threat Intelligence (Trellix GTI) option.
Logo
1

Rule

Severity: Medium
The Trellix Application Control Options Advanced Threat Defense (ATD) settings must not be enabled unless an internal ATD is maintained by the organization.
Logo
1

Rule

Severity: Medium
The Trellix Application Control Options Advanced Threat Defense (ATD) settings, if being used, must be configured to send all binaries with a reputation of Might be Trusted and below for analysis.
Logo
1

Rule

Severity: Medium
The Trellix Application Control Options Advanced Threat Defense (ATD) settings, if being used, must be configured to only send binaries with a size of 5MB or less.

Patternfly

PatternFly elements

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules