Details
Antivirus software is the mostly commonly used technical control for malware threat mitigation. Antivirus software on hosts should be configured to scan all hard drives regularly to identify any file system infections and to scan any removable media, if applicable, before media is inserted into the system. Not scheduling a regular scan of the hard drives of a system and/or not configuring the scan to scan all files and running processes introduces a higher risk of threats going undetected.
Solution
From the ePO server console System Tree, select the Systems tab, select the asset to be checked, select Actions, select Agent, and select Modify Tasks on a Single System. From the list of available tasks in the Task Name column, with the assistance of the ePO SA, identify the weekly on demand client scan task. In the same row as the client scan task under review, under the Task Type column, ensure it is an ‘On Demand scan’ and in the Status column, ensure that the status is ‘Enabled’. Select ‘Edit Assignment’ in the Actions column. In the Task to Schedule: area, verify the Product is ‘VirusScan Enterprise 8.8.0’ and the Task Type is ‘On Demand Scan’. Select the schedule page. Locate the ‘Schedule type:’ label. For the pull down menu, select ‘Weekly’. Select Save.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Windows.
References
- 800-53|SI-3c.1.
- CAT|II
- CCI|CCI-001241
- Rule-ID|SV-55213r3_rule
- STIG-ID|DTAM070
- Vuln-ID|V-6627