Patch Management Zone

	Datasheet: Center for Policy and Compliance
	Datasheet: Security Update Manager (SUM)
	Case Study: Dollar Thrifty Automotive Group

 Latest News

Microsoft Security Bulletin Release for July

On July 8, 2008, Microsoft issued four security updates, fixing vulnerabilities in SQL Server, Windows Explorer, DNS and Outlook Web Access for Exchange.

All of these updates were rated important by Microsoft, meaning that if the vulnerability is exploited it could result in the compromise of the confidentiality, integrity or availability of users data according to Microsoft.

The definition of the ratings by Microsoft can be found here.

Read the full security bulletin from Microsoft

	Datasheet: Center for Policy and Compliance
	Datasheet: Security Update Manager (SUM)
	Case Study: Dollar Thrifty Automotive Group

 Best Practices

A patch management program sustains operational efficiency, shores up security vulnerabilities, and maintains the stability of your enterprise. It starts with having sound, repeatable processes that ensure your systems are properly configured and continuously compliant.

Failure to institutionalize these processes across your enterprise leaves your organization open to exploits that will not only cost you lost revenue, but possibly lost intellectual property too.

Be sure to consider some of the following items when you look at the real cost of poor patch management:

• Downtime - not only in terms of lost productivity, but lost opportunity as well
• Remediation time - resources required for patch assessment, delivery and verification
• Data recovery - not only how long it will take, but the process to determine data integrity
• Lost credibility - with your employees, your boss, and most important, your customers
• Legal implications - new regulatory mandates now require public disclosure when customer information is exposed
• Stolen data - the cost of losing confidential company information could be phenomenal