IVS-07: OS Hardening and Base Controls

CSF v1.1 References:

PF v1.0 References:

Control Statement

Each operating system shall be hardened to provide only necessary ports, protocols, and services to meet business needs and have in place supporting technical controls such as: antivirus, file integrity monitoring, and logging as part of their baseline operating build standard or template.