>

Most Viewed Networking Devices:

  1. Small business firewalls
  2. Computer networking hardware
  3. High speed gigabit PCI adapter
  4. USB 3.0 PCI Card for Super Speed Data Transfer Rate
  5. Small Business Computer Network with Apple Mac Mini Server
  6. NSA 240 Sonicwall Small Business Network Security
  7. Cisco WRVS4400N Wireless Security Router
  8. Cisco RV 120W Wireless-N VPN Firewall and VLAN Router
  9. Cisco RV016 Multi WAN Router For Small Business
  10. Cisco RV220W Small Business Router
  11. Cisco RV082 Dual WAN VPN Router
  12. Edimax EnduraLINK ER-1088 Multi WAN Routers
  13. TL-R4299G Dual WAN Router for Internet Café
  14. New WNDR4500 N900 Vs Tew-692GR N900 Routers
  15. Netgear WNDR4000 and WNDR3800 Dual Band Routers
  16. Linksys E2500 Advanced Dual Band Router Vs E2000
  17. Linksys E-4200 Dual Band Gigabit Router

Most viewed Security Management:

  1. Information security management
  2. Firewalls Security Guidelines
  3. Business Continuity and Disaster Recovery Planning
  4. An Example of LAN Network Risk Assessment
  5. Information security policy guidelines
  6. Network Security Best Practices
  7. IT Security Risk Assessment

Most Viewed Networking Concepts:

  1. Local area network topology
  2. LAN Cable - standard deployment
  3. Easy way to calculate subnet mask
  4. VLAN tutorial
  5. WAN technologies
  6. Route summarization
  7. Understanding firewall with DMZ

 
«  
  »

Virus Security Management


Virus Security Management Must Be Established To Prevent And Detect The Introduction Of Viruses And Other Malicious Software.

The objective is to protect the integrity of software and information assets

It is extremely important that our information systems are properly protected against virus threats. Although user awareness and education is a key factor in reducing the incidence of virus outbreaks, this must be complemented with appropriate anti-virus systems and controls at the infrastructure level.

Education and Awareness

It is important that all employees particularly specialists in the IT Department are familiar with the escalation procedures relating to virus outbreaks and that they have adequate training on security measures, virus prevention measures, and safe recovery procedures.

User awareness programs should be established, focusing on security measures and good practice to prevent virus outbreaks. Employees should also know how to report virus infection and actions to take at the desktop level.

Anti-Virus Management

Anti-virus software should be installed on all personal computers. This should be supplemented by anti-virus software on servers as an additional precaution. All mail attachments should be scanned for viruses at the local mail server to prevent propagation of viruses both inbound and outbound.

The majority of viruses introduced to The Organization systems are done so via email attachments, in particular by those viruses, which exploit the propagation capability of the email system to transmit large numbers of infected messages to Global Address List recipients. See also email security policy.

Anti-virus systems are available which scan either the mailbox database or the message transfer agent of the email system. Further advice can be obtained from the Information Security Management Department. Anti-virus software definition files should be updated as they are released by the vendor. In addition, patches are often released on an ad-hoc basis to target specific new viruses. These should also be installed as soon as possible.

Virus Prevention

In order to prevent infection by a virus, a virus scan should be conducted whenever installing a device or software onto a computer. To speed up the recovery process after a virus infection, ensure that the details of all software installed on a system are kept up to date.

Original programs should be stored securely. Write-protect any disks and make a backup copy. System users should be restricted from writing to the directories where shared programs are stored, and ensure programs are deleted when no longer required.

In order to prevent a virus infection resulting from unauthorized access, ensure that network devices and management information relating to those devices are kept secure, particularly where the device is connected to an outside network.

System access logs (especially the external firewalls) should be analyzed regularly to check for any unauthorized access, and monitor the operation of the systems for irregularities that may indicate the presence of a virus. In order to improve the effectiveness of virus prevention measures, independent system audits are undertaken on a regular basis and ensure that recommendations for improvement are implemented.

Virus Infection

In order to prevent any spread of damage from virus infection, the following actions should be taken:

  • Stop using the infected system.
  • Inform users.
  • Isolate the infected machine by disconnecting from the network.
  • For major outbreaks, consider disconnecting the Exchange server link to the router.
  • Identify virus and the scope of infection.
  • Virus infections propagated via email system must be immediately reported through the appropriate channels.
  • Work on the recovery of the infected system(s) only after a safe recovery plan has been established.
  • Business continuity plans may need to be activated in the event of a major outbreak.

Once the virus infection has been controlled and removed, a thorough analysis of the incident should be carried out, and additional preventive measures implemented if necessary.

Check out related article about assets classification and control in the management of the information Security system within the organization.


See also:

Share
July 26th, 2009 | Tags: , | Category: Information Security, Tips

Leave a Reply

 

 

 

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>