Leadline Inc.Leadline Inc.
Control Requirements

COM-03: Malware Scanning for Transferred Assets

Implementation of malware scanning for information assets transferred to production environment

Control Description

Information assets that have been transferred or returned to the Company's custody are scanned for malware and other unauthorized software prior to installation into the production environment.

Plain Meaning

This control requires that any files, software, or data that comes into the company's possession (whether from external sources, returned equipment, or transferred assets) must be scanned for malicious software before being allowed into the production environment. This prevents malware from entering the company's systems and compromising security.

GD Malware Scanning GD Files Bucket

COM-02: Centralized Logging Solution

Implementation of centralized logging for system and application monitoring with access controls

COM-04: Intrusion Detection and Prevention Systems

Implementation of IDS/IPS for continuous network monitoring and threat detection