TVM-01: Anti-Virus / Malicious Software

Control Family:

Threat and Vulnerability Management

CSF v1.1 References:

Threats Addressed:

Control Statement

Policies and procedures shall be established, and supporting business processes and technical measures implemented, to prevent the execution of malware on organizationally-owned or managed user end-point devices (i.e., issued workstations, laptops, and mobile devices) and IT infrastructure network and systems components.

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4