diff --git a/rules/windows/process_creation/proc_creation_win_schtasks_schedule_via_masqueraded_xml_file.yml b/rules/windows/process_creation/proc_creation_win_schtasks_schedule_via_masqueraded_xml_file.yml
index e5fa4468c..9cfc16707 100644
--- a/rules/windows/process_creation/proc_creation_win_schtasks_schedule_via_masqueraded_xml_file.yml
+++ b/rules/windows/process_creation/proc_creation_win_schtasks_schedule_via_masqueraded_xml_file.yml
@@ -32,8 +32,7 @@ detection:
         CommandLine|contains:
             - '.xml'
     filter_2:
-        system_integrity:
-            IntegrityLevel: 'System'
+        IntegrityLevel: 'System'
     filter_3:
         ParentImage|contains:
             - ':\ProgramData\OEM\UpgradeTool\CareCenter_*\BUnzip\Setup_msi.exe'