Home Security & Compliance Installation of Antivirus
Security & Compliance

Installation of Antivirus

written by Raghul. R February 16, 2018 Last Updated: February 28, 2018
Installation of Antivirus

Introduction:

The procedure is to deploy the Kaspersky antivirus application to all desktops, laptops, windows servers belongs to Sage IT Pvt Ltd. This documents will give detailed information about the antivirus deployment process is planned on according to corporate policy and structure. The IT-Support team has a responsibility to ensure that information and data which has been protected and secured from any sort of virus and Trojan attacks.

Purpose:

A virus is a piece of potentially malicious programming code that will cause some unexpected or undesirable event. Viruses can be transmitted via e-mail or instant messaging attachments, downloadable Internet files, diskettes, and CDs. Viruses are usually disguised as something else, and so their presence is not always obvious to the computer user. A virus infection can be very costly to Sage IT Pvt Ltd in terms of lost data, lost staff productivity, and/or lost reputation.

As a result, one of the goals of Sage IT Pvt Ltd is to provide a computing network that is virus-free. The purpose of this policy is to provide instructions on measures that must be taken by Sage IT Pvt Ltd employees to help achieve effective virus detection and prevention.

Scope:

This policy applies to all computers that are connected to the Sage IT Pvt Ltd network via a standard network connection, wireless connection, modem connection, or virtual private network connection. This includes both company-owned computers and personally-owned computers attached to the Sage IT Pvt Ltd network. The definition of computers includes desktop workstations, laptop computers, handheld computing devices, and servers.

General Policy:

  1. Currently, Sage IT Pvt Ltd has Kaspersky Endpoint Security for Business Select with Corporate License.
  2. All computers attached to the Sage IT Pvt Ltd network must have standard, supported anti-virus software installed. This software must be active, be scheduled to perform virus checks at regular intervals, and have its virus definition files kept up to date.
  3. Any activities with the intention to create and/or distribute malicious programs onto the Sage IT Pvt Ltd network (e.g. viruses, worms, Trojan horses, e-mail bombs, etc.) are strictly prohibited.
  4. If an employee receives what he/she believes to be a virus, or suspects that a computer is infected with a virus, it must be reported to the IT department immediately by sending information email to servicedesk@sageit.in Report the following information : virus name, extent of infection, source of virus, and potential recipients of infected material.
  5. No employee should attempt to destroy or remove a virus, or any evidence of that virus, without direction from the IT department.
  6. Any virus-infected computer will be removed from the network until it is verified as virus-free.

Deployment Process:

  • The IT-Support Team has installed the Kaspersky centralized management server console to manage the overall systems in the network with centralized protection manner.
  • The centralized console has the details of all the desktops laptops servers and other network devices which are connected to Sage IT Pvt Ltd network.
  • From the centralized server the antivirus administrator will create the stand alone Kaspersky endpoint security (KES) package for all versions of windows computers including the Net agent application.
  • The Net agent application is must installed with along the KES application.
  • The net agent application will keep on ping within the administration server by using this communication the server will monitor client system efficiently.

Installation process:

  • To install the Kaspersky Endpoint security on any of the client’s system such as desktops or laptops which connected with Sage IT Pvt Ltd network the below process should be processed
  • The floor system administrator must send the details of the client desktop which he going to install the KES.
  • The details should furnish the desktop/laptop name, IP address of the machine, current operating system of the machine, Workgroup / Domain group.
  • Then once he get the approval from the antivirus management administrator the floor system administrator educated to download the KES installation packages from the below link sageit.in/tools
  • According to the type of operating system the system administrator can download the KES installation files and he also need to download the KES Net Agent.
  • After the files are successfully downloaded the system administrator must open the KES folder and run the setup file.

The setup begins with installing the three below components

  • The Net Agent file is installed.
  • Then the client system tests the connectivity with the administration server.
  • Finally, the Kaspersky Endpoint security (KES) core files are installed
  • After the successful installation of the setup file in the client desktop the system administrator will intimate the antivirus administrator server to complete the process from his side.
  • Now the antivirus management administrator will verify the details of the client desktop provided by the system administrator. If the information is correct the antivirus management administrator will move the new KES installed desktop from the unassigned devices group to Sage IT managed Computers Group.
  • Once he moved the desktop to the Sage IT managed computers group the new client desktop will automatically get the license key and it will be activated automatically.

Protection Details:

  • Once the desktops or laptops are the servers are installed with KES and bind with proper license from the Kaspersky centralized server the devices are automatically comes under the very high protection status.

By using the advanced version of KES the devices are protected with the below features

Protection Control:

  • File Anti-Virus
  • Mail Anti-Virus
  • Web Anti-Virus
  • IM Anti-Virus
  • Firewall
  • Network Attack Blocker
  • System Watcher

Endpoint Controls:

  • Application control
  • Application Privilege control
  • Device control
  • Web Control
  • Vulnerability Monitor

Database Update management process:

  • By using the centralized management console the antivirus database updates are managed in a centralized manner.
  • The Kaspersky centralized management console directly download the new virus definitions database updates from the world wide located Kaspersky database web servers.
  • Once the updates are downloaded to the server repositories then the newly downloaded updates are automatically pushed up to the client desktops via Net Agent applications.

Scan & Updating process:

Daily scanning time 13.00 pm (IST)

  • Scan type: Quick scan

Weekly Scanning time 17.00 pm (IST)

  • Scan type: Full scan

Database updating process:

Updating Kaspersky server database time 1.00 pm (IST)

  • Client database update time: Any time once the client system is available.

Reports & Logs:

All the logs and every activity of the Kaspersky administration server and client desktop details are reported via email from the admin server automatically to the systemadmin@sageit.in email address.

Knowledge to End User:

Rules for Virus Prevention:

  • Always run the standard anti-virus software provided by Sage IT Pvt Ltd.
  • Never open any files or macros attached to an e-mail from an unknown, suspicious, or untrustworthy source.
  • Never open any files or macros attached to an e-mail from a known source (even a co-worker) if you were not expecting a specific attachment from that source.
  • Be suspicious of e-mail messages containing links to unknown Web sites. It is possible that the link is a malicious executable (.exe) file disguised as a link. Do not click on a link sent to you if you were not expecting a specific link.
  • Never copy, download, or install files from unknown, suspicious, or untrustworthy sources or removable media.
  • Avoid direct disk sharing with read/write access.
  • If instructed to delete e-mail messages believed to contain a virus, be sure to also delete the message from your Deleted Items or Trash folder.
  • Back up critical data and systems configurations on a regular basis and store backups in a safe place.
  • Regularly update virus protection on personally-owned home computers that are used for business purposes. This includes installing recommended security patches for the operating system and other applications that are in use.
  • Employees must not attempt to either alter or disable anti-virus software installed on any computer attached to the Sage IT Pvt Ltd network without the express consent of the IT department.

IT Department Responsibilities:

The following activities are the responsibility of the Sage IT Pvt Ltd IT department:

  • The IT department is responsible for maintaining and updating this Anti-Virus Policy.
  • The IT department will keep the anti-virus products it provides up-to-date in terms of both virus definitions and software version in use.
  • The IT department will apply any updates to the services it provides that are required to defend against threats from viruses.
  • The IT department will install anti-virus software on all Sage IT Pvt Ltd owned and installed desktop workstations, laptops, and servers.
  • The IT department will take appropriate action to contain, remove, and assist in recovery from virus infections. In order to do so, the IT department may be required to disconnect a suspect computer from the network or disconnect an entire segment of the network.
  • The IT department will perform regular anti-virus sweeps of full system files.

 

0 comment
0
Facebook Twitter Google + Pinterest

You may also like

Security Measures of Virtual Machines In ESXi Server

February 19, 2018

Leave a Comment