System and Information Integrity (SI)
Provide protection from malicious code at designated locations within organizational systems.
System and Information Integrity (SI)
Level 2
Monitor system security alerts and advisories and take action in response.
System and Information Integrity (SI)
Update malicious code protection mechanisms when new releases are available.
System and Information Integrity (SI)
Perform periodic scans of organizational systems and real-time scans of files from external sources as files are downloaded, opened, or executed.
System and Information Integrity (SI)
Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of potential attacks.
System and Information Integrity (SI)
Level 2
Identify unauthorized use of organizational systems.
System and Information Integrity (SI)
Level 3
Verify the integrity of security critical and essential software using root of trust mechanisms or cryptographic signatures.
System and Information Integrity (SI)
Level 3
Ensure that specialized assets including IoT, IIoT, OT, GFE, Restricted Information Systems and test equipment are included in the scope of the specified enhanced security requirements or are segregated in purpose-specific networks.
System and Information Integrity (SI)
Use threat indicator information and effective mitigations obtained from, at a minimum, open or commercial sources, and any DoD-provided sources, to guide and inform intrusion detection and threat hunting.
