IT-3 Workstations – Malware

What is IT-3 Workstations – Malware Control?

Workstations: malware control talks about how both your software and hardware must be protected from potential threats. Antivirus solutions are typically the most commonly used tools to protect workstations and software, including the OS (operating system).

Available tools in the marketplace

The following listing is “crowdsourced” from our customer base or from external research. TrustCloud does not personally recommend any of the tools below, as we haven’t used them.

Asset Monitoring / Endpoint Security Tools

Jamf (Mac-specific)

Mosyle (Mac-specific)

Kolide

Rippling

Duo

OSQuery (free, open source)

Available templates

TrustCloud has a curated list of templates, internally or externally sourced, to help you get started. Click on the link for a downloadable version:

• N/A: no template for this control

Control implementation

To implement Workstations – malware control,

Install a centralized antivirus solution to manage all your critical software and/or hardware.

What evidence do auditors look for?

Most auditors, at a minimum, are looking for the below-suggested action:

1. Provide screenshots of the antivirus policies and a list of connected software.
2. Provide screenshots of the antivirus policies and a list of connected devices.

Evidence example

For the suggested action, an example is provided below:

1. Provide a screenshot of the antivirus policies and a list of connected software.
   The following screenshot shows the malware’s policies.
   Google search
   
   
2. Provide screenshots of the antivirus policies and a list of connected devices.
   The following screenshot shows the list of connected OS software.