Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Patching.

Published byColeen O’Connor’ Modified over 6 years ago

Similar presentations

Presentation on theme: "Security Patching."— Presentation transcript:

1 Security Patching

2 Benefits of Security Patching
Mitigates software vulnerabilities, reducing risk of system exploitation Maintains software and systems at vendor baseline, reducing future performance issues Reduces risk of theft of Sensitive information (e.g., personal, proprietary, controlled) Reduces risk of malware injection into proprietary products Important part of system and software maintenance

3 Know Which Security Patches are Needed
Identify Operating System and applications by version on the network Use vendor proprietary tools to identify systems that require patches Sign-up with vendors for notification of new security patches for specific versions in use - eliminates wasted labor reviewing patch advisories for versions not in use Purchase a security service that tracks and sends vulnerability alerts for security patches released by vendors – includes risk data for SLA decisions: Ex: Sign-up with cyber-security organizations to receive vulnerability newsletters Ex: Ex: Monitor cyber-security websites that discuss vulnerabilities Ex: Ex:

4 Use Automation to Test & Deploy Patches
System Center Configuration Manager (SCCM) Use to deploy Microsoft and other vendor security patches Use to identify applicable systems – target list Use to generate compliance reports on patched percent Vendor proprietary automation tool to identify and patch systems using enterprise admin console & agent on systems SCCM – Microsoft: Red Hat Satellite Server Deploy patches to test development group/s – identify groups for specific products If no issues, approve PRODUCTION patch deployment across the network

5 Company Policy & Communications
Identify standard security patching schedules so internal customers can plan work around patching tasks High risk vulnerabilities – test immediately and patch once testing is complete Via announcements, make employees aware of security patching prior to patch deployment Let employees know whether patching will require reboot of system Coordinate patching of servers with server stakeholders

6

Download ppt "Security Patching."

Similar presentations

Steve Lewis J.D. Edwards & Company

Steve Lewis J.D. Edwards & Company
4/14/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/14/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
SACM Terminology Nancy Cam-Winget, David Waltermire, March.

SACM Terminology Nancy Cam-Winget, David Waltermire, March.
Summer 200811 IAVA1 NATIONAL INFORMATION ASSURANCE TRAINING STANDARD FOR SYSTEM ADMINISTRATORS (SA) Minimum.

Summer IAVA1 NATIONAL INFORMATION ASSURANCE TRAINING STANDARD FOR SYSTEM ADMINISTRATORS (SA) Minimum.
The State of Security Management By Jim Reavis January 2003.

The State of Security Management By Jim Reavis January 2003.
Dashboard Company Settings Controlled Online Accounting.

Dashboard Company Settings Controlled Online Accounting.
Patch Management In Solaris and Red Hat. What is a Patch A collection of fixes to a problem Three main categories: Security Bugs in the system that provide.

Patch Management In Solaris and Red Hat. What is a Patch A collection of fixes to a problem Three main categories: Security Bugs in the system that provide.
Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.
Patching MIT SUS Services IS&T Network Infrastructure Services Team.

Patching MIT SUS Services IS&T Network Infrastructure Services Team.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
Monitor Linux OS health & performance Monitor log files Monitor JEE app servers Monitor line-of-business applications Monitor databases and web.

Monitor Linux OS health & performance Monitor log files Monitor JEE app servers Monitor line-of-business applications Monitor databases and web.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
Patch Management Strategy

Patch Management Strategy
Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.

Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
Vulnerabilities. flaws in systems that allow them to be exploited provide means for attackers to compromise hosts, servers and networks.

Vulnerabilities. flaws in systems that allow them to be exploited provide means for attackers to compromise hosts, servers and networks.
FNAL Configuration Management Jack Schmidt Cyber Security Workshop May 23-24 th 2006.

FNAL Configuration Management Jack Schmidt Cyber Security Workshop May th 2006.
Tim Vander Kooi Systems

Tim Vander Kooi Systems
UNM IT Managed Workstations. Benefits of Managed Workstations  Standard software with uniform configuration ensures end users have the same set of applications.

UNM IT Managed Workstations. Benefits of Managed Workstations  Standard software with uniform configuration ensures end users have the same set of applications.
Agency Security Update Service (ASUS) Mike Bolger KSC CIO.

Agency Security Update Service (ASUS) Mike Bolger KSC CIO.

Similar presentations

Ads by Google