← Back to catalog
SI-3(4)

Updates Only by Privileged Users

System and Information Integrity (SI)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Update malicious code protection mechanisms only when directed by a privileged user.

Discussion

Protection mechanisms for malicious code are typically categorized as security-related software and, as such, are only updated by organizational personnel with appropriate access privileges.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.