| 1. In the Trend Micro SMS, navigate to "Profiles" and "Inspection Profiles" and select the organization's profile. |
2. If there is not one configured, select "Default".
3. Click "Search".
4. Under "Filter criteria", select the Filter Category "Traffic Normalization, Exploits, and Vulnerabilities", select the "Filter Name" section and type "ddos".
If the following filter names produced in the search list are not set to Block+Notify, this is a finding.
Note: If the site has set up a security profile (i.e., not using the default profile), then this should be inspected using the site's SSP for compliance.