DE.CM-4Key Measure
Malicious code is detected
Detect · Continuous Monitoring
Fully Automated
Compliance Score
97%
CompliantDocumentation Maturity
4/ 5
x
Target: 2.5
Implementation Maturity
4/ 5
x
Target: 2.5
Control Description
Anti-malware solutions are deployed on all endpoints, kept up to date with current definitions, and configured for real-time protection and regular scans.
Microsoft Graph API Endpoints Used
GET /deviceManagement/managedDevicesGET /security/alerts_v2Required Permissions
DeviceManagementManagedDevices.Read.AllSecurityAlert.Read.All
Remediation Guidance
Deploy Microsoft Defender Antivirus on all endpoints via Intune. Enable real-time protection, cloud-delivered protection, and automatic sample submission. Configure weekly full scans. Monitor for devices with outdated definitions.