← Back to catalog
SI-3(4)
Updates Only by Privileged Users
System and Information Integrity (SI)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Update malicious code protection mechanisms only when directed by a privileged user.
Discussion
Protection mechanisms for malicious code are typically categorized as security-related software and, as such, are only updated by organizational personnel with appropriate access privileges.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.