Updates and patches

One of the most important activities you can perform to ensure the security of your organization's information system is to keep your enterprise regularly updated with information security updates and patches provided by the various software vendors that make up your architecture.

To ensure that you have a well-developed patching program, you need to ensure that you have all the necessary components in place to ensure that you don't miss anything and that you are keeping all your software up to date. Your patching program should include the following:

  • Inventory: An up-to-date inventory of your production information system that includes:
    • Server-specific information:
      • Operating systems:
        • Type
        • Version
      • Physical location ...

Get Information Security Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.