>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SI-3(4)Malicious Code Protection

PBMM (P2)
Secret (P2)
Operational

>Control Description

MALICIOUS CODE PROTECTION | UPDATES ONLY BY PRIVILEGED USERS The information system updates malicious code protection mechanisms only when directed by a privileged user.

>Supplemental Guidance

This control enhancement may be appropriate for situations where for reasons of security or operational continuity, updates are only applied when selected/approved by designated organizational personnel. Related controls: AC-6, CM-5.

>Tailoring Guidance

Updates to an information system that could detrimentally impact the security posture should be tested. This is especially true for mission critical systems.

Ask AI

Configure your API key to use AI features.