Issue No. 02 - March/April (2009 vol. 11)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MITP.2009.38
Simon Liu , US National Library of Medicine
Rick Kuhn , US National Institute of Standards and Technology
Hart Rossman , Science Applications International Corporation
The amount of time to protect enterprise systems against potential vulnerability continues to shrink. Enterprises need an effective patch management mechanism to survive the insecure IT environment. Effective patch management is a systematic and repeatable patch distribution process which includes establishing timely and practical alerts, receiving notification of patches or discovering them, downloading patches and documentation, assessing and prioritizing vulnerabilities, performing testing, deploying patches, and auditing.
IT Professional, security, vulnerability, patch management, vulnerability alerts, vulnerability scan, vulnerability assessment
S. Liu, R. Kuhn and H. Rossman, "Surviving Insecure IT: Effective Patch Management," in IT Professional, vol. 11, no. , pp. 49-51, 2009.