Malware protection that satisfies the assessor.
Malware protection is the fourth Cyber Essentials control. It requires active anti-malware, application whitelisting, or sandboxing on all in-scope devices. IP Four deploys, configures, and evidences the right solution for your environment.
100%
First-Time Pass Rate
4-6 Wks
Average Certification Time
500+
UK Businesses Certified
5
Controls Covered End-to-End
Malware protection capabilities for Cyber Essentials compliance.
Anti-Malware Deployment
Deploy and configure anti-malware software across all in-scope devices, ensuring real-time scanning and automatic definition updates are enabled.
Malware Signature Updates
Verify that anti-malware definitions are set to update automatically and that no devices are running outdated signature databases.
Application Whitelisting
Implement application whitelisting on devices where anti-malware alone is insufficient, preventing unauthorised software from executing.
Sandboxing Configuration
Configure sandboxing for email attachments and web downloads where supported, isolating potentially malicious content before it reaches the endpoint.
Removable Media Controls
Implement controls to scan removable media automatically on connection and restrict the use of unauthorised USB devices.
Malware Protection Evidence
Produce screenshots and policy exports demonstrating active anti-malware deployment and configuration across all in-scope devices.
Our malware protection process.
Endpoint Audit
Identify all in-scope devices and assess current anti-malware status, including software version, definition age, and scan configuration.
Gap Analysis
Identify devices without adequate malware protection, outdated definitions, or disabled real-time scanning.
Solution Selection
Recommend the most appropriate malware protection approach for each device type, whether anti-malware, whitelisting, or sandboxing.
Deployment and Configuration
Deploy and configure malware protection across all in-scope devices, enabling real-time scanning and automatic updates.
Evidence Collection
Capture anti-malware console screenshots, policy configurations, and device compliance reports as assessor-ready evidence.
Certification Submission
Submit malware protection evidence as part of the Cyber Essentials application and support the assessor through review.
Malware protection delivered across the UK.
Challenge: A retail chain with 12 locations had a mix of devices, some running expired anti-malware licences and others with real-time scanning disabled by users.
Outcome: IP Four deployed a centralised endpoint protection platform across all 80 devices, enabled real-time scanning, and configured automatic definition updates. The business passed Cyber Essentials first time.
Challenge: A training provider needed Cyber Essentials for a government contract but had student devices with no anti-malware and staff devices running three different products inconsistently.
Outcome: IP Four standardised on a single anti-malware platform, deployed it across all 60 devices, and produced a compliance report. Certification was achieved within five weeks.
Challenge: A construction firm had site-based devices frequently connected to USB drives with no scanning controls, creating a significant malware risk and a gap against Cyber Essentials.
Outcome: IP Four implemented USB scanning policies, deployed anti-malware on all site devices, and configured automatic updates via the cloud management console. The firm achieved certification on schedule.
Ready to deploy malware protection and achieve certification?
We start with a free endpoint audit to assess your current malware protection status. From there, we deploy the right solution and manage the whole process to certification.