Home
Browse frameworks
Contact us
SAMMY premium
Login
SAMMY UI is optimized for resolutions with a width 1024px and higher.
CIS Critical Security Controls
Browse CIS Critical...
SAMM
OpenSAMM1.5
Cybersecurity Fundamentals
NIST CSF 2.0
NIST SSDF
NIST 800-34
DSOMM
BSIMM 14
ISO 27001:2022 CMMI
CIS Critical Security Controls
Inventory and Control of Enterprise Assets
Inventory and Control of Software Assets
Data Protection
Secure Configuration of Enterprise Assets and Software
Account Management
Access Control Management
Continuous Vulnerability Management
Audit Log Management
Email and Web Browser Protections
Malware Defenses
Data Recovery
Network Infrastructure Management
Network Monitoring and Defense
Security Awareness and Skills Training
Service Provider Management
Application Software Security
Incident Response Management
Penetration Testing
10,1: Deploy and Maintain Anti-Malware Software
10,2: Configure Automatic Anti-Malware Signature Updates
10,3: Disable Autorun and Autoplay for Removable Media
10,4: Configure Automatic Anti-Malware Scanning of Removable Media
10,5: Enable Anti-Exploitation Features
10,6: Centrally Manage Anti-Malware Software
10,7: Use Behavior-Based Anti-Malware Software
Centrally Manage Anti-Malware Software
10,6: Centrally Manage Anti-Malware Software
Policy defined
Not applicable - Not applicable
None - None
Informal - Informal
Partially written - Partially written
Written - Written
Approved and communicated - Approved and communicated
Not applicable
None
Informal
Partially written
Written
Approved and communicated
Control implemented
Not applicable - Not applicable
Not implemented - Not implemented
Parts of policy implemented - Parts of policy implemented
Implemented on some systems - Implemented on some systems
Implemented on most systems - Implemented on most systems
Implemented on all systems - Implemented on all systems
Not applicable
Not implemented
Parts of policy implemented
Implemented on some systems
Implemented on most systems
Implemented on all systems
Control automated
Not applicable - Not applicable
Not automated - Not automated
Parts of policy automated - Parts of policy automated
Automated on some systems - Automated on some systems
Automated on most systems - Automated on most systems
Automated on all systems - Automated on all systems
Not applicable
Not automated
Parts of policy automated
Automated on some systems
Automated on most systems
Automated on all systems
Control reported
Not applicable - Not applicable
Not reported - Not reported
Parts of policy reported - Parts of policy reported
Reported on some systems - Reported on some systems
Reported on most systems - Reported on most systems
Reported on all systems - Reported on all systems
Not applicable
Not reported
Parts of policy reported
Reported on some systems
Reported on most systems
Reported on all systems
Description
Centrally manage anti-malware software.