>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

VM-12Maintenance Tools: Inspect Media

>Control Description

Organization checks media containing diagnostic and test programs for malicious code before the media are used in production systems.

Theme

Process

Type

Detective

Policy/Standard

Vulnerability Management Policy

>Implementation Guidance

1. Ensure a process has been defined and documented to check media with diagnostic and test programs before using in production. 2. Ensure that only media without any malicious code are used in production.

>Testing Procedure

1. Inspect and validate that a process has been defined and documented to check media with diagnostic and test programs before using in production. 2. Validate using logs and scan results that only media without any malicious code were used in production.

>Audit Artifacts

E-VM-01
E-VM-14

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

PCI DSS
1

6.2.3.1

Ask AI

Configure your API key to use AI features.