Protection against Malicious Software

CX Index shall implement procedures, user awareness, and change controls to detect and prevent the introduction of malicious software into CX Index’s computing environment.  This policy will protect the integrity of software and information by promoting procedures and user actions to mitigate the risks of the introduction of malicious software into CX Index.

To prevent interrupted service caused by computer viruses for both computers and networks, all personal computer users must keep current versions of approved virus-screening software enabled on their primary computers at all times.

CX Index shall comply with the requirements of software licenses.  No unauthorised or illegal software will be used. 

All e-mail attachments will be scanned for malicious content when entering the network or servers scanned prior to use.  All unauthorised files or amendments will be thoroughly investigated.

Procedures and responsibilities for the use of, training in, reporting on and recovery of virus attacks will be developed.  All users will receive training on virus awareness and virus control procedures. Business contingency plans shall include the handling and recovery from virus attacks.

Management will research and actively inform users about information on real (vs. hoax) threats and the procedures for handling each type of attack.  The Senior Management shall lead this effort.