CC6.6SOC 2Logical access - protects against malicious software
The entity implements controls to prevent, detect, and act on malicious software.
- Trust Service Criterion
- CC
- Audit period
- type-2
- Points of focus
- Anti-malware or equivalent protections are enabled
- Malware alerts are investigated
- Users are trained on malicious content risks