Patch Management Only part of the solution….. Bob Isaak Mar 04, 2004.

Slides:

Advertisements

Similar presentations

IBM SMB Software Group ® ibm.com/software/smb Maintain Hardware Platform Health An IT Services Management Infrastructure Solution.

Advertisements

Introduction to Systems Management Server 2003 Tyler S. Farmer Sr. Technology Specialist II Education Solutions Group Microsoft Corporation.

People do business. We make it work. T: E: Microsoft Windows Server 2003 End of Life – What do I do now? October.

Futurestate IT Confidential 1 Our Solution SaaS platform enables rapid assessment, migration and remediation of applications to accelerate Windows 7 /

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

Virtual techdays INDIA │ 9-11 February 2011 How Microsoft IT Does Desktop Patch Management Partha Chandran │ Sr. Service Engineer, Microsoft.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

Managing a Windows Server 2003 Environment - SMS and MOM Michael Kleef IT Pro Evangelist Microsoft Pty Ltd

Chris Sfanos Program Manager Forefront Client Security Microsoft Session Code: SW17.

8 Systems Analysis and Design in a Changing World, Fifth Edition.

Patching MIT SUS Services IS&T Network Infrastructure Services Team.

Server Roles and Features.NET Framework 3.51.NET Framework 4.5 IIS Web Server IIS Default Document IIS Directory Browsing IIS HTTP Errors.

Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.

Virtual techdays INDIA │ November 2010 SQL Azure Data Sync Shilpa Nirmale │ Associate Manager, Accenture.

How To Keep Up With Security Patches Eric Schultze Security Strategies Microsoft.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Smart Card Deployment David Gautrey IT Manager – Microsoft New Zealaand Microsoft Corporation.

Monitor Linux OS health & performance Monitor log files Monitor JEE app servers Monitor line-of-business applications Monitor databases and web.

Cost Effort Complexity Benefit Cloud Hosted Low Cost Agile Integrated Fully Supported.

IT:Network:Microsoft Applications

SUS Services ECE Computer Facilities. SUS Services Software Update Services Microsoft Security And Critical Update Service Microsoft Security And Critical.

SYSTEM CENTER: ENDPOINT PROTECTION FUNDAMENTALS Howard A. Carter III Senior Consultant Microsoft Consulting Services September 21, 2013 TechGate 2013 –

Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.

FreightSupplyChain Trinity Business Solutions Limited International Freight Consolidators March 2001 Trinity Business Solutions Limited International Freight.

LabMan Conference: June 8 & 9, 2010 Lauren Nicholas, Moravian College

Windows Server 2008 R2 and IT Challenges Windows Server Solution Accelerators Microsoft Assessment and Planning Toolkit 4.0 Next.

SOE and Application Delivery Gwenael Moreau, Abbotsleigh.

IT:Network:Microsoft Server 2 Chapter 27 WINDOWS SERVER UPDATE SERVICES.

What If You Could… …Automatically protect and secure your company’s most critical business information?... …Get more done with less by enabling employees.

Using the WDK for Windows Logo and Signature Testing Craig Rowland Program Manager Windows Driver Kits Microsoft Corporation.

System Center 2012 Certification and Training May 2012.

PATCH MANAGEMENT: Issues and Practical Solutions Presented by: ISSA Vancouver Chapter March 4, 2004.

Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

Building an Agile Datacenter with Deployment Standards Jonathan Richey | Director of Development | Altiris Sam Rosenbalm | Director of Microsoft Alliance.

The Microsoft Baseline Security Analyzer A practical look….

Making Managed Services Easier Presenter: Greg Henderson Director, International.

FNAL System Patching Design Jack Schmidt, Al Lilianstrom, Andy Romero, Troy Dawson, Connie Sieh (Fermi National Accelerator Laboratory) Introduction FNAL.

SMS 2003 Deployment and Managing Windows Security Rafal Otto Internet Services Group Department of Information Technology CERN 26 May 2016.

Time lag between discovering issue and resolving Difficult to find solutions and patches that can help resolve issue Service outages expensive and.

NiceFC and CMF Introduction Ivan Deloose IT-IS Custom Windows Services for Controls Applications.

A Networked Machine Management System 16, 1999.

Template v4 September 27, Copyright © Infor. All Rights Reserved. 1 Time Track Installation and Configuration Development Team.

INFORMATION SECURITY UNIX & DB2. Introduction THE OBJECTIVE IS TO DESIGN SECURITY MEASURES FOR A MILITARY SYSTEM SYSTEM RUNNING A DB2 SERVER ON UNIX FOCUS.

Microsoft Management Seminar Series SMS 2003 Change Management.

Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.

System Center Lesson 4: Overview of System Center 2012 Components System Center 2012 Private Cloud Components VMM Overview App Controller Overview.

Real Time Infrastructure John D. Kennedy Manager - Information Technology SLM Corporation.

Managing and Monitoring the Microsoft Application Platform Damir Bersinic Ruth Morton IT Pro Advisor Microsoft Canada

Managing your IT Environment. Microsoft Operations Manager 2005 Overview.

BladeLogic Demo. 03/10/09 BladeLogic Demo BladeLogic Who? Automation taking my job? What? No, it’s making it easier. Started by entrepreneurs who understood.

BÄTTRE UTBILDNINGSRESULTAT. NÅ HÖGRE MED KUNSKAP.

Dell Client Manager – The Power of Control Kevin Winert, Dell OpenManage Product Marketing Bryan Rhodes, Dell Alliance Product Manager, Altiris.

69% of employees say they are accessing business apps on personal devices Organizations say 34% of their employees are accessing business apps on.

Managed by UT-Battelle for the Department of Energy System Center Configuration Manager at ORNL National Laboratories Information Technology Summit 2008.

Ph No: Mob: ,plot No-27,NGGO's Colony, Pattabhi reddy gardens,Visakhapatnam-07 BladeLogic.

Managing Microsoft SQL 2000 with MOM MOM Overview Why Monitor SMS 2003 with MOM 2005 The SMS 2003 Management Pack Inside The Management Pack Best.

보안 취약점 비교 Linux vs. Windows

How to be a SharePoint Developer

Get to know SQL Manager SQL Server administration done right

Unix Provisioning Manager

Systems Analysis – ITEC 3155 Evaluating Alternatives for Requirements, Environment, and Implementation.

NTC 324 RANK Education Your Life - ntc324rank.com.

NTC 324 RANK Perfect Education/ ntc324rank.com.

NTC 324 RANK Education for Service-- ntc324rank.com.

CHANGE MANAGEMENT FOR WINDOWS OS

Chapter 10: Supporting and Maintaining Desktop Applications

Designing IIS Security (IIS – Internet Information Service)

Module 1: Overview of Systems Management Server 2003

SharePoint Server Assessment Results

Presentation transcript:

Patch Management Only part of the solution….. Bob Isaak Mar 04, 2004

2 Monthly Vulnerability Alerts Source: Security Focus Statistics 2002

3 Operating Systems Source: Security Focus Statistics 2002

4 Vendors Source: Security Focus Statistics 2002

5 The Challenges Server & PC Inventory- What & Where Software components & running services Agentless Auto discovery to remain current Patch and Service Pack Status of Servers and PCs Currently installed service packs Previous patches All components O/S, Exchange, SQL & IIS Patch Dependency Analysis Pre-requisites Co-requisites Service Packs which supersede patches Patch Inventory and Patch Classification Criticality Severity or Exposure

6 The Challenges (cont…) Patch Matching Reports or System Base lining/Modeling Patches required based on role Patches required compared to “the standard” Role-Based Administration/Server and PC Grouping Security vs Admin SQL vs IIS vs Domain Controller vs File Server Patch Distribution and Installation Automate intervention Distributed patch servers Roll back if required

7 Platform and Application Support Not just a Microsoft problem Not just an IIS or Windows problem Extends to Unix, Application Servers, & Database Servers Agent vs. Agentless Architectures Agents provide more functionality but are more expensive to deploy and maintain Agents may be required for mobile and remote users. Leverage existing configuration management technologies Agents may conflict with applications The Challenges (cont…)

8 Weekly Vulnerability Assessment SANS Weekly CVE Notification Review Security Team & Operational Teams Initial Exposure Assessment Formal Risk Assessment Customer Notification & Approval Remediation Recommendations Review Our Approach