| 💼 5.3.1 The anti-malware solution(s) is kept current via automatic updates. | | | 9 | | no data |
| 💼 5.3.2 The anti-malware solution performs periodic scans and active or real-time scans or performs continuous behavioral analysis of systems or processes. | 1 | | 9 | | no data |
|  💼 5.3.2.1 If periodic malware scans are performed to meet Requirement 5.3.2, the frequency of scans is defined in the entity's targeted risk analysis. | | | | | no data |
| 💼 5.3.3 For removable electronic media, the anti-malware solution performs automatic scans of when the media is inserted, connected, or logically mounted, or performs continuous behavioral analysis of systems or processes when the media is inserted, connected, or logically mounted. | | | | | no data |
| 💼 5.3.4 Audit logs for the anti-malware solution(s) are enabled and retained. | | | 9 | | no data |
| 💼 5.3.5 Anti-malware mechanisms cannot be disabled or altered by users, unless specifically documented, and authorized by management on a case-by-case basis for a limited time period. | | | | | no data |