SOEs provided by third parties are scanned for malicious code and configurations.
Topic
Standard Operating Environments
Applicable to
all
History
Mar 2022
SOEs provided by third parties are scanned for malicious code and configurations.
Miscellaneous changes were made to rationale and recommendations throughout the publication to clarify content without changing intent. This included a review from the Guidelines for System Hardening chapter through to the Guidelines for Data Transfers chapter.
Aug 2020
SOEs provided by third parties are scanned for malicious content and configurations before being used.
Security control 1608 was introduced to ensure that when organisations use SOEs that are provided by third parties they scan them for malicious content and configurations before they are used.