NIST SP 800-171 & CMMC 2.0 3.14.4 Requirement:

Update malicious code protection mechanisms when new releases are available.

NIST SP 800-171 & CMMC 2.0 3.14.4 Requirement Explanation:

Malware changes on an hourly or daily basis, and it is important to update detection and protection mechanisms frequently to maintain the effectiveness of the protection. In general, anti-malware software compares a file against a signature database to decide if the file is malicious. For anti-malware software to be effective the signature database must remain updated. If the signature database is outdated then it can not detect new malware.

Example NIST SP 800-171 & CMMC 2.0 3.14.4 Implementation:

Configure your anti-malware software to update its malware signature database. The updates should be periodic (e.g., every day at 8:00 AM) or automatic when a new update is availble.

NIST SP 800-171 & CMMC 2.0 3.14.4 Scenario(s):

- Scenario 1:

Alice set up the anti-malware software on her computers to update their signature databases hourly.
 

Quick & Simple

Discover Our Cybersecurity Compliance Solutions:

Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you

 NIST SP 800-171 & CMMC Compliance App

NIST SP 800-171 & CMMC Compliance

Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
 HIPAA Compliance App

HIPAA Compliance

Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
 FAR 52.204-21 Compliance App

FAR 52.204-21 Compliance

Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
 ISO 27001 Compliance App

ISO 27001 Compliance

Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.