{"description": "Verify that an Endpoint Security Solution has been deployed on the operating system.\nIf there is not an Endpoint Security Solution deployed, this is a finding.", "rationale": "Without the use of automated mechanisms to scan for security flaws on a continuous\nand/or periodic basis, the operating system or other system components may remain\nvulnerable to the exploits presented by undetected software flaws.\n\nTo support this requirement, the operating system may have an integrated solution\nincorporating continuous scanning and periodic scanning using other tools,\nas specified in the requirement.", "severity": "medium", "references": {}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": null, "ocil": null, "oval_external_content": null, "fixtext": "Install an Endpoint Security Solution that can provide a continuous mechanism to\nmonitor the state of system components with regard to flaw remediation and\nthreat prevention.", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": [], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Install an Endpoint Security Solution", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/software/integrity/endpoint_security_software/install_endpoint_security_software/rule.yml", "template": null}