7.8.7 Anti-malware














                                       The Security Operations domain for the CISSP
               certification exam includes several objectives directly related to
               incident management. Effective incident management helps an
               organization respond appropriately when attacks occur to limit the
               scope of an attack. Organizations implement preventive measures to

               protect against, and detect, attacks, and this chapter covers many of
               these controls and countermeasures. Logging, monitoring, and
               auditing provide assurances that the security controls are in place and
               are providing the desired protections.