Measure: MalwareProtectionGuidelines


Implementation of guidelines for a correct behaviour to protect the IT systems from malware. Thus all employees know how to handle hard- and software to ensure a secure IT environment. The aim is to prevent any damages resulting from the malware and to ensure the integrity, authenticity and confidentiality of all data and assets in the IT infrastructure.


The guidelines should define the handling of potentially harmful soft- and hardware. It should e.g. be defined when and which storage devices may be connected to the IT infrastructure, how annexes of e-mails have to be handled and how executable files have to be treated.

Event type

Risk reduction mechanism

Action characteristics

event_ measures