Measure: MalwareProtectionSoftware


Installation of suitable software to protect the IT systems against malware. By this measure malware reaching the IT system shall be blocked, deleted or at least directly noticed. Thus any damages resulting from the malware shall be avoided to ensure the integrity, authenticity and confidentiality of all data and assets in the IT infrastructure.


Used applications and software for defense against malware should be tailored for the use in enterprises, solutions for home use are not sufficiently safe. Furthermore, the chosen solution should be updated and checked on its effectiveness regularly. The employees should be trained on handling possibly dangerous contents in a sensitive way. Any detections of malware should be reported directly by both, the user detecting the malware and automatically by the system. All relevant data emerging in the IT system should be logged for a fast detection of incidents and for an easier understanding of past attacks.

Risk reduction mechanism

Action characteristics

event_ measures