Maintain a Vulnerability Management Program

Requirement 5 Use and regularly update anti-virus software or programs

Malicious software, commonly referred to as “malware”—including viruses, worms, and Trojans—enters the network during many business approved activities including employees’ e-mail and use of the Internet, mobile computers, and storage devices, resulting in the exploitation of system vulnerabilities. Anti-virus software must be used on all systems commonly affected by malware to protect systems from current and evolving malicious software threats.

5.1 Deploy anti-virus software on all systems commonly affected by malicious software (particularly personal computers and servers).

• 5.1.1 Ensure that all anti-virus programs are capable of detecting, removing, and protecting against all known types of malicious software.

5.2 Ensure that all anti-virus mechanisms are current, actively running, and capable of generating audit logs.

Build and Maintain a Secure Network

Bit9 blocks any software that is not pre-approved to run.  A cryptographic hash (a unique identifier) is taken for each new file that is written to disk. Before this file is allowed to run, the hash is created and then compared to a list of approved hashes that were created by an automated software approval process.  If the hash is on the list of approved hashes, the file is allowed to run. If the hash is not on the list of approved hashes, it is completely blocked from execution. If a file is changed, it changes the cryptographic hash for the file and because the hash is no longer on the list of approved hashes, it too will not run. While there are obvious benefits to Bit9’s approach to preventing viruses, spyware, and adware, there are also significant benefits from preventing illegal and unlicensed software from running.
Therefore Bit9 helps Maintain a Vulnerability Management Program in the following areas;

5.1 Deploy anti-virus software on all systems commonly affected by viruses (particularly personal computers and servers).

5.1.1 Ensure that anti-virus programs are capable of detecting, removing, and protecting against other forms of malicious software, including spyware and adware.

5.2 Ensure that all anti-virus mechanisms are current, actively running, and capable of generating audit logs.

For more details on Bit9 

In order to manage all devices that are introduced to network whether authorised or not, we would recommend installing a Network Access Control solution to provide full control on all End Points.

 CounterACT limits non-compliant device access to specified resources, thus enabling users to remain productive while their device-compliance violations are addressed. For example, if a user device is found to have an out-of-date anti-virus (AV) definition file, it can be moved to a VLAN, allowing the user to access email and Internet while blocking the device from other critical resources.  CounterACT can then work with existing services to provide guided remediation and/or cue the AV server to auto-update a specific device. Once remediation is complete and the device is found to be in compliance, complete access to the production network may be granted or restored.

CounterACT integrates with a number of remediation services, including patch management, anti-virus, anti-spyware, vulnerability management, and more. These third-party integrations allow CounterACT to orchestrate and automate the process of correcting policy violations. For example, if a device misses a critical patch, CounterACT detects the policy violation and automatically cues the patching engine (Microsoft WSUS or SMS) to update the specific system. Often this can be done without the user’s involvement, retaining update report information for future security audits.

PCI DSS Core Principles

The core of the PCI DSS is a group of principles and accompanying requirements, around which the specific elements of the DSS are organised:

Requirement 1: Install and maintain a firewall configuration to protect cardholder data

Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters 

Requirement 3: Protect stored cardholder data

Requirement 4: Encrypt transmission of cardholder data across open, public networks

Requirement 5: Use and regularly update anti-virus software

Requirement 6: Develop and maintain secure systems and applications

Requirement 7: Restrict access to cardholder data by business need-to-know

Requirement 8: Assign a unique ID to each person with computer access

Requirement 9: Restrict physical access to cardholder data

Requirement 10: Track and monitor all access to network resources and cardholder data

Requirement 11: Regularly test security systems and processes

Requirement 12: Maintain a policy that addresses information security

Antivirus Partners

is a global leader in network antivirus and internet content security software and services with focus on outbreak prevention and enabling customers to manage the impact of network worms and virus threats. 

Antivirus Software and Intrusion Prevention Solutions. 

AntiVirus, Anti-Spyware, Endpoint Security, Backup, Storage Solutions.

  provides the leading antivirus  and spyware software in the internet security marketplace. Providing free anti-virus software for scanning PCs. Trial our free antivirus download to beat viruses like trojan.win32, kido and conficker.

Patch Management

  Identify and Patch Software Security Vulnerabilities Quickly with Vulnerability Assessment and Automated Patch Deployment.