Keep Systems and Applications Current
Keeping systems current to reduce the risk that a known vulnerability could be exploited is a challenge that is common across all IT teams and common types of systems. Reliable, predictable, and complete coverage periodically using tools that can reach all systems in scope regardless of location (whether a server in a data center or a client computer at a home office) is important. Those same tools and procedures can also enable the teams to quickly deploy updates when higher-priority security patches are released. In cases of severe vulnerabilities, speed of deployment can be a very important component of the response.
While there is a lot of focus on the core operating systems and software, it’s important to provide the same type of focus to keeping all components up to date, including firmware, physical and virtual appliances, hypervisor technologies, storage, network gear, etc. Many of these things are not handled by the same tools and processes that cover the major portion of the deployment (windows servers and clients), but they are also very important to keep up to date from a security standpoint. Identifying and addressing these other areas is important to providing the best coverage possible.
Broad coverage in this area should help minimize the risk of one of the most common attack vectors “find and exploit vulnerable software/systems”.
Need help getting and staying current? Reach out today to schedule a conversation about getting and keeping current.