Introduction

The Ivanti Endpoint Security AntiVirus module provides protection against known malware using signature-based detection combined with behavioral analysis, including Sandbox technology to provide protection against unknown malware.

This document provides a best practice workflow to act as a guide for administrators when implementing AntiVirus.

Following the workflow outlined in this document should help to ensure a successful deployment and ongoing virus and malware protection.

In addition to following this workflow, you should also develop a recovery plan in the event that widespread infections occur. If it does not already exist, you should also develop a support escalation plan so that users will be able to report if malware infections or false positives have occurred on their endpoints. Finally, you will also need to train your IT Help Desk team to deal with such escalations.