Effective Date: July 2026
1. Objective
To protect our organizational environment, all endpoints (including workstations and servers) are required to maintain high-level protection against malware, viruses, and unauthorized intrusions.
2. Antivirus & Endpoint Protection
We enforce a strict “Defense-in-Depth” strategy across all hardware assets:
- Mandatory Protection: All Windows/Ubuntu terminals and servers are equipped with reputable endpoint protection solutions (e.g., Windows Defender, ClamAV, or enterprise-grade EDR).
- Continuous Monitoring: Real-time file system protection is enabled on all devices to detect malicious activity at the point of entry.
- Automatic Updates: Virus definition databases are configured to update automatically to ensure coverage against the latest threats.
3. Automated Security Scanning
Security-as-Code Integration: We utilize automated scripts to trigger periodic full-system scans. Any threats detected during these scans are automatically isolated and reported to the system administrator via our internal monitoring pipeline.
Security scans are performed:
- Real-time: Upon file access or execution.
- Scheduled: Weekly comprehensive full-disk scans.
- Event-based: Triggered immediately if an anomaly is detected in the network or system logs.
4. Hardware Scope
This policy applies to all assets under our management, including but not limited to:
- Workstations: DFC 1, GS 1, YWGJ PC (All Windows-based systems).
- Servers: All Linux instances (Ubuntu/CentOS), including production nodes in Singapore, Oracle Cloud, and Volcano Cloud.
5. Compliance Enforcement
Endpoints that fail to maintain active protection status are automatically quarantined from the internal network until security posture is restored. This ensures that no compromised device can interact with our sensitive API environments.
Security Operations Team | Authorized Governance