As from SGOS 7.x Malware Scanning policy has been removed. Instead, you will need to install a Content Security Policy layer in the web VPM. Symantec recommends enabling the Policy Services service to keep the content security up to date.

To integrate with ICAP services, use ICAP-related policy gestures in CPL or the VPM. To enable Policy Services, select Configuration > Threat Protection > Policy Services.

While adding the Content Security policy layer in web VPM for ICAP Fail-Over List  you will get a " bluecoat-local-response" an option which needs to be selected as below:

bluecoat-local-response is used for the internal Content Analysis services. If you have any external services configured that will be reflected above in the list.