last sync: 2024-May-24 18:03:04 UTC

Microsoft Managed Control 1677 - Malicious Code Protection | Regulatory Compliance - System and Information Integrity

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1677 - Malicious Code Protection
Id 4a248e1e-040f-43e5-bff2-afc3a57a3923
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this System and Information Integrity control
Additional metadata Name/Id: ACF1677 / Microsoft Managed Control 1677
Category: System and Information Integrity
Title: Malicious Code Protection - Update Protection Mechanisms
Ownership: Customer, Microsoft
Description: The organization: Updates malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy and procedures;
Requirements: Servers: Azure updates malicious code protection mechanisms for anti-malware software including signature definitions whenever new releases are available. Anti-malware software is configured to check for updates to the signature files at least daily and automatically update them accordingly. Network Devices Network devices do not natively support anti-malware software, but are protected through a combination of the server-based anti-malware software and the secure coding practices required by the Security Development Lifecycle (SDL), configuration management and control, supply chain processes, and in-depth logging and monitoring.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC