Task 8: Ensure Antivirus is Set Up and Configured On All Computers

Antivirus (AV) is a foundational security tool that helps detect and block known malware threats like viruses, trojans, and ransomware. While AV isn’t foolproof (as we’ve covered in previous lessons), it remains a critical layer of defense—especially when combined with other technologies like firewalls and MDR (Managed Detection and Response).

When it comes to small business cybersecurity, antivirus should be the first software-based defensive mechanism deployed across the organization.

The great news is that most operating systems come with a free, built-in AV solution that provides solid baseline protection.

You don’t need to spend money on premium AV products to get started, but you do need to make sure it’s enabled, up-to-date, and configured correctly.

Why This Task Matters

  • Since antivirus solutions are often free, easy to configure, and offer similar protection to many paid alternatives, ensuring it’s properly set up is one of the highest return-on-investment (ROI) actions a small business owner can take for basic cybersecurity hygiene.
  • Unprotected or outdated devices are prime targets for automated malware and low-skilled attackers (“script kiddies”) who rely on widely known exploits.
  • Antivirus provides visibility into malware infections and can help slow down an attack, giving time for other defenses to kick in.
  • Most compliance frameworks (HIPAA, PCI-DSS, etc.) expect antivirus to be present and active on endpoints.

Task Steps: Setting Up Antivirus (AV) Protection

Step 1: Verify Antivirus Is Active

  • Windows (Microsoft Defender Antivirus):
    • Open Windows SecurityVirus & Threat Protection.
    • Ensure Defender is active and states “You’re protected”.
    • If Defender is disabled because a third-party AV is installed, confirm that the third-party AV is valid and updating.
  • MacOS:
    • Ensure XProtect (Apple’s built-in malware scanner) is enabled (this is automatic in most cases).
    • For added protection, consider installing a free lightweight AV, such as Malwarebytes Free Edition, especially for manual scans.

Step 2: Confirm Automatic Antivirus Definition Updates Are Set

  • Run a manual update check to ensure virus definitions are current.
  • Make sure automatic updates are enabled in the AV settings.

Step 3: Schedule Regular Scans

  • Set up at least a weekly quick scan and a monthly full scan.
    • For most businesses, the default Windows Defender schedule is sufficient, but verify it’s enabled.
    • On Macs, use third-party AV tools to run manual or scheduled scans.

Step 4: Enable Event Logging (if applicable)

  • Check that your AV software is keeping logs of detections and actions.
  • Logs can be valuable for identifying patterns or supporting an investigation if malware is found.

Step 5: Document AV Status in Your Inventory

  • Update your hardware/software inventory sheet to reflect:
    • AV is installed and active.
    • Definitions are up-to-date.
    • Scans are scheduled.
    • Logging is enabled (if applicable).

Optional But Recommended: Enable Cloud-Delivered Protection

  • Windows Defender:
    • Go to Virus & Threat Protection Settings → Enable Cloud-delivered protection and Automatic sample submission.
    • This allows Microsoft to rapidly update detection for emerging threats.

Conclusion

Antivirus won’t catch every threat—but it will stop many of the basic, automated attacks that target small businesses every day. By taking a few minutes to ensure AV is active, updated, and logging, you’re closing a critical gap in your cybersecurity foundation.