Presentation is loading. Please wait.

Presentation is loading. Please wait.

Effective Patch Management Strategies

Published byMichelle Boutin Modified over 6 years ago

Similar presentations

Presentation on theme: "Effective Patch Management Strategies"— Presentation transcript:

1 Effective Patch Management Strategies
A panel discussion Lawrence Walsh, executive editor Information Security magazine

2 What is patch management?
Patch management is the proactive, measured response to known vulnerability exposures and risks.

3 Patch Management Agenda
What is a security patch? Prioritizing Patching Need for Testing Inventory Control Standardization v. Diversity Re-architecting Networks Separation of Duties

4 What is a Security Patch?
Is there a difference between a security patch and a functionality patch? And should we care?

5 Prioritizing Patching
Can you trust how vendors rate the criticality of patches? How do you assign criticality ratings in your own environment?

6 Need for Testing Do we rush to patch or should we hold off and leave systems exposed while we test? Can an enterprises effectively test patches?

7 Inventory Control Why keep accurate inventory?
Methods for inventory control? Consequences for poor inventory control?

8 Wash, Rinse, Repeat Deploy Validation Reporting
No Patch Available, Machines Remain Vulnerable (Unsupported implementations)

9 Separation of Duties Who should lead patching efforts
Why is there a need for separation of duties

10 Re-architecting Networks
Does re-architecting reduce the need for patching? What are the pitfalls of re-architecting? Is it worth the cost? Are new chokepoint solutions effective?

11 Thank you. Questions, comments?
These panelists will not be available at the Ask-the-Experts booth in the Exhibit Hall. Please send questions to

Download ppt "Effective Patch Management Strategies"

Similar presentations

Implementation of ShipManagement Systems Project Management Prepared by Lana Al-Salem Director of Projects Management SpecTec Ltd.

Implementation of ShipManagement Systems Project Management Prepared by Lana Al-Salem Director of Projects Management SpecTec Ltd.
Agenda for Discussion Agenda for Discussion Risk Management Stakeholder Analysis project solutions for your world Gina Davidovic, PMP

Agenda for Discussion Agenda for Discussion Risk Management Stakeholder Analysis project solutions for your world Gina Davidovic, PMP
Update Vehicle Inventory Project Barossa AutoDESA 10 th September, 2003 Andrew Lewis.

Update Vehicle Inventory Project Barossa AutoDESA 10 th September, 2003 Andrew Lewis.
Building Sustainable Project Management Practices Dr. Janet Ply, PMP, Pendére Inc. Stacy Jaycox, CBAP, Tyson Foods ITRI’s Women in Technology Conference.

Building Sustainable Project Management Practices Dr. Janet Ply, PMP, Pendére Inc. Stacy Jaycox, CBAP, Tyson Foods ITRI’s Women in Technology Conference.
© 2013 Cisco and/or its affiliates. All rights reserved. 1 Cisco Public Building Trustworthy Systems Overview and Strategy 2013 RSA Conference January.

© 2013 Cisco and/or its affiliates. All rights reserved. 1 Cisco Public Building Trustworthy Systems Overview and Strategy 2013 RSA Conference January.
Data Breach Risks Overview Heather Pixton www2.idexpertscorp.com

Data Breach Risks Overview Heather Pixton www2.idexpertscorp.com
A A A N C N U I N F O R M A T I O N T E C H N O L O G Y : IT OPERATIONS 1 Problem Management Jim Heronime, Manager, ITSM Program Tanya Friehauf-Dungca,

A A A N C N U I N F O R M A T I O N T E C H N O L O G Y : IT OPERATIONS 1 Problem Management Jim Heronime, Manager, ITSM Program Tanya Friehauf-Dungca,
PROJECT MANAGEMENT (PM) STRATEGIES FOR CLINICAL ENGINEERING Sanjeev Hiremath Princess Margaret Hospital, Perth Brett Anderson Perfect Project Planning,

PROJECT MANAGEMENT (PM) STRATEGIES FOR CLINICAL ENGINEERING Sanjeev Hiremath Princess Margaret Hospital, Perth Brett Anderson Perfect Project Planning,
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.
Vulnerability Assessments

Vulnerability Assessments
Website Hardening HUIT IT Security | Sep 30 2011.

Website Hardening HUIT IT Security | Sep
1 BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING Reducing your Risk Profile MIDWEST DATA RECOVERY INC.

1 BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING Reducing your Risk Profile MIDWEST DATA RECOVERY INC.
Information Security Governance 25 th June 2007 Gordon Micallef Vice President – ISACA MALTA CHAPTER.

Information Security Governance 25 th June 2007 Gordon Micallef Vice President – ISACA MALTA CHAPTER.
PATCH MANAGEMENT: Issues and Practical Solutions Presented by: ISSA Vancouver Chapter March 4, 2004.

PATCH MANAGEMENT: Issues and Practical Solutions Presented by: ISSA Vancouver Chapter March 4, 2004.
Copyright Security-Assessment.com 2004 Vulnerability Management Explained By Peter Benson.

Copyright Security-Assessment.com 2004 Vulnerability Management Explained By Peter Benson.
In the Cloud How to Address Security in the Cloud.

In the Cloud How to Address Security in the Cloud.
Auditing IT Vulnerabilities IT vulnerabilities are weaknesses or exposures in IT assets or processes that may lead to a business risk or security risk.

Auditing IT Vulnerabilities IT vulnerabilities are weaknesses or exposures in IT assets or processes that may lead to a business risk or security risk.
The Real Deal With SIM/SEM The Promise of Security Information / Event Management Scott Sidel Sr. Security Manager Computer Sciences Corp.

The Real Deal With SIM/SEM The Promise of Security Information / Event Management Scott Sidel Sr. Security Manager Computer Sciences Corp.
IT Security – Scanning / Vulnerability Assessment David Geick State of Connecticut IT Security.

IT Security – Scanning / Vulnerability Assessment David Geick State of Connecticut IT Security.

Similar presentations

Ads by Google