IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Safeguard Catalogue - Organisation Remarks<br />

____________________________________________________________________ .........................................<br />

Measures for <strong>IT</strong> systems with non-resident virus checking<br />

In <strong>IT</strong> systems on which no resident computer virus scanning program is<br />

installed, as an alternative it is necessary to stipulate the regular use of a<br />

computer virus scanning program (cf. S 4.3 Periodic runs of a virus-detection<br />

program), checking for viruses when data media are exchanged and data is<br />

transferred (cf. S 4.33 Use of a virus scanning program on exchange of data<br />

media and during data transfer) and checking for macro viruses when<br />

incoming files are received (cf. S 4.44 Checking incoming files for macro<br />

viruses) in order to ensure the rapid detection of computer viruses and to<br />

prevent their being spread further.<br />

Reporting of computer viruses<br />

It must be stipulated to whom the discovery of a computer virus must be<br />

reported without delay. <strong>The</strong> form of the report (form sheet) and the means of<br />

communication (by telephone, in person, in writing, by e-mail) must also be<br />

regulated (see S 2.158 Reporting computer virus infections).<br />

Regulation of responsibilities<br />

<strong>The</strong> tasks, authorities and responsibilities for protection against computer<br />

viruses must be laid down for the following:<br />

- <strong>The</strong> contact person for computer viruses<br />

- <strong>The</strong> administrator of network servers<br />

- <strong>IT</strong> users of terminals<br />

- <strong>IT</strong> security management<br />

Updating the computer virus protection concept<br />

When changes are made to <strong>IT</strong> systems, when new <strong>IT</strong> systems are installed and<br />

when networking changes are made, the computer virus protection concept<br />

must be updated and adapted (cf. S 2.34 Documentation of changes made to<br />

an existing <strong>IT</strong> system).<br />

<strong>The</strong>se arrangements must be made known to those people affected. <strong>The</strong><br />

observance of these arrangement should be checked from time to time in order<br />

to ensure that the computer virus protection concept is consistently<br />

implemented.<br />

Additional controls:<br />

- When was the last check made? Have the results been documented?<br />

- How are the people concerned informed of the relevant arrangements?<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!