Anti-Virus Best Practices
Current virus-checking programs approved by the Information Security department help to ensure all web servers, local area network servers, mail servers, firewalls, and networked personal computers are properly secured and enabled to restrict and prevent unauthorized file and network activity.
Anti-virus software should be distributed and enabled be continuously enabled on all servers and workstations commonly affected by malicious software. The anti-virus software should be capable of detecting, removing, and protecting against all known types of malicious software. All anti-virus mechanisms should be current, actively running, and if possible generate audit logs on all servers and workstations commonly affected by malicious software.
Employees should not attempt to eradicate viruses or other malicious software without expert assistance. If employees suspect infection by a virus, or if virus detection software indicates an infection, employees should immediately stop using the involved computer, physically disconnect the machine from all networks, and contact the IT Department. If the suspected virus appears to be damaging information or software, employees should turn off the computer immediately.
Unpatched or Virus-Infested Systems
Employees who have not installed the required software patches on their remote computers or whose systems are virus-infested should disconnect from the network until a secure computing environment has been reestablished.