Requirement No: 14-311
Initiative: Information Security Assurance
Organisation Type: Acute Trust
Precautions are required to prevent and detect the introduction of malicious and unauthorised mobile code into an information asset’s computer components. Failure to defend against viruses and other malware could lead to significant damage to your organisation's business capabilities and serious impact on service user or patient care.
2: The approved and documented controls and procedures to mitigate against malware risks have been implemented.