STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← SI-3 (2) — Malicious Code Protection

CCI-001247

Definition

The information system automatically updates malicious code protection mechanisms.

Parent Control

SI-3 (2)Malicious Code ProtectionSystem and Information Integrity

Linked STIG Checks (12)

V-237380CAT IIThe CA API Gateway providing content filtering must automatically update malicious code protection mechanisms.CA API Gateway ALG Security Technical Implementation GuideV-239889CAT IIThe Cisco ASA must be configured to automatically install updates to signature definitions and vendor-provided rules.Cisco ASA IPS Security Technical Implementation GuideV-214507CAT IIThe BIG-IP ASM module must be configured to automatically update malicious code protection mechanisms when providing content filtering to virtual servers.F5 BIG-IP Application Security Manager Security Technical Implementation GuideV-266159CAT IIThe F5 BIG-IP appliance providing content filtering must automatically update malicious code protection mechanisms.F5 BIG-IP TMOS ALG Security Technical Implementation GuideV-55597CAT IIThe IDPS must automatically install updates to signature definitions, detection heuristics, and vendor-provided rules.Intrusion Detection and Prevention Systems (IDPS) Security Requirements GuideV-66431CAT IIThe Juniper Networks SRX Series Gateway IDPS must automatically install updates to signature definitions.Juniper SRX SG IDPS Security Technical Implementation GuideV-66431CAT IIThe Juniper Networks SRX Series Gateway IDPS must automatically install updates to signature definitions.Juniper SRX SG IDPS Security Technical Implementation GuideV-259694CAT IIExchange antimalware agent must be enabled and configured.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation GuideV-259695CAT IIThe Exchange malware scanning agent must be configured for automatic updates.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation GuideV-228851CAT IIThe Palo Alto Networks security platform must automatically update malicious code protection mechanisms.Palo Alto Networks ALG Security Technical Implementation GuideV-241145CAT IITrend Deep Security must automatically update malicious code protection mechanisms.Trend Micro Deep Security 9.x Security Technical Implementation GuideV-242196CAT IIThe TPS must automatically install updates to signature definitions, detection heuristics, and vendor-provided rules.Trend Micro TippingPoint IDPS Security Technical Implementation Guide