10: Malware Defenses

CSF v1.1 References:

PF v1.0 References:

Control Statement

Prevent or control the installation, spread, and execution of malicious applications, code, or scripts on enterprise assets.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]

Subcontrols

10.5: Enable Anti-Exploitation Features

Enable anti-exploitation features on enterprise assets and software, where possible, such as Microsoft® Data Execution Prevention (DEP), Windows® Defender Exploit Guard (WDEG), or Apple® System Integrity Protection (SIP) and Gatekeeper™.