Are all of your desktop computers, laptops, tablets and mobile phones protected from malware?
Section A8: Malware Protection · Cyber Essentials Montpellier
What this question is really asking
Confirm that all in-scope desktop computers, laptops, tablets, and mobile phones are protected against malware via one of three options: (A) anti-malware software, (B) app store or application signing controls, or (C) sandboxed application environments. Option A is the most common approach for Windows and Linux. Options B and C are typical for iOS, Android, and managed Chromebooks.
What satisfies this requirement
What to prepare before your assessor visit
The choice between option A, B, or C needs to be internally consistent across your device types. Most organisations use option A for Windows and macOS desktops and laptops, and option B for iOS and Android mobiles. Chromebooks typically fall under option B or C. Don't try to apply a single uniform answer across all device types if your actual approach genuinely differs — assessors will notice the inconsistency when they read A8 alongside your device inventory in A2.
How this question sits across CE versions
Related policy templates
Getting certified means having documentation to back it up. These policy templates cover the controls this question tests.
Does your organisation meet this requirement?
Answer 30 plain-English questions and find out exactly where you stand across all 5 Cyber Essentials control areas — with a prioritised list of what to fix first.