In SGOS 7, and greater, the Malware Scanning option has been replaced by Content Security Policy layer in the web VPM. Symantec recommends enabling the Policy Services service to keep the Content Security Policy up to date.

To integrate with ICAP services, use ICAP-related policy gestures in CPL or the VPM. To enable Policy Services, select Configuration > Threat Protection > Policy Services.

While adding the Content Security policy layer in web VPM for ICAP Fail-Over List  you will get a " bluecoat-local-response" an option which needs to be selected as below:

bluecoat-local-response is used for the ASG internal Content Analysis services. If you have any external services configured that will be reflected above in the list.