VIRUS PROTECTION Policy Code: 7325
Adherence to this policy will improve the protection of district computers, data and networks against viruses and other destructive programs.
All files downloaded to district computers might harbor computer viruses, Trojan horses, logic or time bombs, worms or other destructive programs (collectively, "virus" or "viruses"). Therefore, all downloaded files must be scanned for such viruses. Virus detection programs and practices shall be implemented throughout the district. Training must take place to ensure that all computer users know and understand safe computing practices.
The Chatham County Schools Technology Division will ensure that district computers and networks have current software on their network to prevent the introduction or propagation of computer viruses. The Technology Division will provide users the capability to perform frequent backups on sensitive data files as a means of recovery should data destruction occur. The Chatham County Schools’ Technology Division will select and use virus prevention and mitigation standards and best practices as appropriate. Virus controls, procedures, education and training shall include information on:
- Use of antivirus software.
- Performing frequent backups on data files.
- Use of write-protected program media, such as diskettes or CDROMs.
- Validating the source of software before installing it.
- Scanning for viruses on files that are downloaded from the Internet or any other outside source.
- Scanning for viruses on all diskettes, CDs or other media brought from home or any other outside source.
- Requirements that users first obtain management approval before directly adding any software to the system, whether from public software repositories, other systems or their home systems.
System configuration management will include installation of anti-virus software for use throughout the WAN and LAN. System software, including virus signature files, should be promptly updated as released by the software vendor. Servers and workstations should be scanned periodically, either manually or via an automated process. Automated scanning for viruses is preferable to manual scanning. Periodic reviews of overall controls should be performed yearly to determine endpoint vulnerabilities, weaknesses and product renewals. Software programs shall be installed only from validated media. System and application bug fixes or patches should be accepted only from highly reliable sources, such as the software vendor. Patches shall be accepted only from trusted and verified sources.
Intentional creation, possession or dissemination of viral code, viruses or virus creation software is strictly prohibited. Intentional hoaxes are strictly prohibited. Violations shall be handled in accordance with the Acceptable Use Policy and may result in suspension and/or criminal prosecution.
Employees should contact the Technology Help Desk anytime they feel they may have contracted or spread a computer virus. Technology Division incident management procedures should include
- verification of a virus threat to rule out possibility of hoax, before notification of the threat is broadcast,
- the identity of personnel responsible for mitigation of virus threats,
- internal escalation procedures and severity levels,
- processes to identify, contain, eradicate, and recover from virus events,
- a contact list of anti-virus vendors, and
- reporting of all virus outbreaks that have extended beyond a single PC to the district security administrator.
Approved August 28, 2006