• Like

Best practices for Patch Management: An In-Depth Technical Presentation

  • 3,709 views
Uploaded on

View this technical presentation on the recommended steps to achieve a best practices approach to patch and vulnerability management. Take away the critical items and processes you need to address to …

View this technical presentation on the recommended steps to achieve a best practices approach to patch and vulnerability management. Take away the critical items and processes you need to address to help you reduce costs and risks in the long term.

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
  • Great_place where _you can find genuine_Tall_men_and_Big_women.
    Are you sure you want to
    Your message goes here
No Downloads

Views

Total Views
3,709
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
86
Comments
1
Likes
2

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. Developing PatchManagementBest PracticesAn In-Depth Technical Webcast
  • 2. Today’s Agenda Introduction Curing Your Patch Management Headache with Lessons Learned from the Field • Laying the Groundwork • Before Patch Tuesday • On Patch Tuesday • After Patch Tuesday Q&A
  • 3. Today’s Panelists Russ Ernst Jim Czyzewski Group Product Manager Supervisor – Clinical Desktop Support Lumension MidMichigan Medical Center3
  • 4. Why Is Patch Management Important Sources of Endpoint Risk 5% Zero-Days 30% Missing Patches 65% Misconfigurations Today’s Endpoint Security Stack AV Device Control Application Control Patch & Configuration Management4
  • 5. Benefits of a Solid Patching ProcessMalware Costs Money Patching Reduces Target Size5
  • 6. Patch Management Best Practices Laying the Groundwork Patch After Patch Before Patch Management Tuesday Tuesday Process On Patch Tuesday6
  • 7. Laying the Groundwork
  • 8. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterDiscover Assets8
  • 9. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterAgent MaintenanceLumension Reporting Services (LRS)9
  • 10. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterClassify Value and Risk10
  • 11. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterEstablish Workflow and GroupsUsers RolesGroups11
  • 12. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterIdentify Test Groups12
  • 13. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterStaff TrainingLearning Portals13
  • 14. Before Patch Tuesday
  • 15. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterPrepare Resources• Schedule Resources » Allocate IT resources for Patch Tuesday while also integrating additional patch release schedules from third-party applications, such as Adobe, Apple (ad hoc), Java and so forth » Review the patching needs of any internally-developed applications and/or custom patches and consider deploying these patches as part of the monthly patch cycle• Reserve Down-Time for Servers » Reserve time slots to be able to deploy patch updates to any mission-critical servers within 72 hours of the Patch Tuesday release15
  • 16. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterWatch for Pre-Announcements16
  • 17. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterConfirm Reporting Up-to-Date17
  • 18. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterDeploy Missing Updates and Pre-Requisites18
  • 19. On Patch Tuesday
  • 20. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterStudy Information and Security Briefings• Important information to consider when understanding the impact of Patch Tuesday on your environment includes: • Bulletin Severity • Whether or not the vulnerability is known/publicly disclosed at the time of release • Does the vendor know of any active exploits at the time of release • Value of the asset being patched20
  • 21. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterPrioritize Potential Patches21
  • 22. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterTest and Install Patches• Follow Internal Change Control Planning and Approval Process• Staged Testing • Deploy applicable bulletins to test groups • Ensure successful deployment before rollout to additional groups in the environment • Pay special attention to impact to custom-developed, internal applications• Staged Deployments22
  • 23. After Patch Tuesday
  • 24. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterDeployment History24
  • 25. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterCalculate Time to Deploy25
  • 26. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterMonitor for ComplianceMandatory Baseline26
  • 27. Laying the Groundwork | Week Before | Patch Tuesday | Week AfterContinuous Improvement• Checks and Balances » Review the Effectiveness of Patch Tuesday Remediations• Metrics Improvement » Modify system settings, distribution parameters and so forth to further optimize the system for next month’s updates » WAN optimization, polling frequency and minimizing the patches being detected can all help further optimize performance » Look for computers that did not receive updates at all or those that took unusually long to receive updates27
  • 28. Q&A
  • 29. More Information• Free Vulnerability Scanner Tool • Get a Quote (and more) » Discover all OS and application vulnerabilities http://www.lumension.com/ on your network vulnerability-management/ http://www.lumension.com/Resources/ patch-management-software/buy-now.aspx#6 Security-Tools/Vulnerability-Scanner.aspx• Lumension® Patch and Remediation » Online Demo Video: http://www.lumension.com/ vulnerability-management/ patch-management-software/demo.aspx » Free Trial (virtual or download): http://www.lumension.com/ vulnerability-management/ patch-management-software/free-trial.aspx29
  • 30. Global Headquarters8660 East Hartford DriveSuite 300Scottsdale, AZ 852551.888.725.7828info@lumension.comhttp://blog.lumension.com