• Home

  • Technology

  • Best practices for Patch Management: An In-Depth Technical Presentation
30
Developing Patch Management Best Practices An In-Depth Technical Webcast

Best practices for Patch Management: An In-Depth Technical Presentation

Tags:

Embed Size (px)

Citation preview

Page 1: Best practices for Patch Management: An In-Depth Technical Presentation

Developing Patch ManagementBest Practices

An In-Depth Technical Webcast

Page 2: Best practices for Patch Management: An In-Depth Technical Presentation

Today’s Agenda

Introduction

Curing Your Patch Management Headache with Lessons Learned from the Field• Laying the Groundwork• Before Patch Tuesday• On Patch Tuesday• After Patch Tuesday

Q&A

Page 3: Best practices for Patch Management: An In-Depth Technical Presentation

Today’s Panelists

3

Russ ErnstGroup Product ManagerLumension

Jim Czyzewski Supervisor – Clinical Desktop SupportMidMichigan Medical Center

Page 4: Best practices for Patch Management: An In-Depth Technical Presentation

4

Why Is Patch Management Important

AVDevice Control

Application Control

Patch & Configuration Management

5%

Zero-Days30%

Missing Patches

65%

Misconfigurations

Sources of Endpoint Risk

Today’s Endpoint Security Stack

Page 5: Best practices for Patch Management: An In-Depth Technical Presentation

5

Benefits of a Solid Patching Process

Malware Costs Money Patching Reduces Target Size

Page 6: Best practices for Patch Management: An In-Depth Technical Presentation

6

Patch Management Best Practices

Laying the Groundwork

On Patch Tuesday

Before Patch Tuesday

After Patch Tuesday

PatchManagement

Process

Page 7: Best practices for Patch Management: An In-Depth Technical Presentation

Laying the Groundwork

Page 8: Best practices for Patch Management: An In-Depth Technical Presentation

Discover Assets

8

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 9: Best practices for Patch Management: An In-Depth Technical Presentation

Agent Maintenance

Lumension Reporting Services (LRS)

9

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 10: Best practices for Patch Management: An In-Depth Technical Presentation

Classify Value and Risk

10

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 11: Best practices for Patch Management: An In-Depth Technical Presentation

Establish Workflow and Groups

Users

Groups

Roles

11

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 12: Best practices for Patch Management: An In-Depth Technical Presentation

Identify Test Groups

12

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 13: Best practices for Patch Management: An In-Depth Technical Presentation

Staff Training

Learning Portals

13

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 14: Best practices for Patch Management: An In-Depth Technical Presentation

Before Patch Tuesday

Page 15: Best practices for Patch Management: An In-Depth Technical Presentation

Prepare Resources

15

•Schedule Resources» Allocate IT resources for Patch Tuesday while also integrating additional patch

release schedules from third-party applications, such as Adobe, Apple (ad hoc), Java and so forth

» Review the patching needs of any internally-developed applications and/or custom patches and consider deploying these patches as part of the monthly patch cycle

•Reserve Down-Time for Servers» Reserve time slots to be able to deploy patch updates to any mission-critical

servers within 72 hours of the Patch Tuesday release

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 16: Best practices for Patch Management: An In-Depth Technical Presentation

Watch for Pre-Announcements

16

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 17: Best practices for Patch Management: An In-Depth Technical Presentation

Confirm Reporting Up-to-Date

17

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 18: Best practices for Patch Management: An In-Depth Technical Presentation

Deploy Missing Updates and Pre-Requisites

18

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 19: Best practices for Patch Management: An In-Depth Technical Presentation

On Patch Tuesday

Page 20: Best practices for Patch Management: An In-Depth Technical Presentation

Study Information and Security Briefings

• Important information to consider when understanding the impact of Patch Tuesday on your environment includes:

• Bulletin Severity• Whether or not the vulnerability is known/publicly disclosed at the time of release• Does the vendor know of any active exploits at the time of release• Value of the asset being patched

20

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 21: Best practices for Patch Management: An In-Depth Technical Presentation

Prioritize Potential Patches

21

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 22: Best practices for Patch Management: An In-Depth Technical Presentation

Test and Install Patches

• Follow Internal Change Control Planning and Approval Process • Staged Testing

• Deploy applicable bulletins to test groups • Ensure successful deployment before rollout to additional groups in the environment • Pay special attention to impact to custom-developed, internal applications

• Staged Deployments

22

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 23: Best practices for Patch Management: An In-Depth Technical Presentation

After Patch Tuesday

Page 24: Best practices for Patch Management: An In-Depth Technical Presentation

Deployment History

24

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 25: Best practices for Patch Management: An In-Depth Technical Presentation

Calculate Time to Deploy

25

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 26: Best practices for Patch Management: An In-Depth Technical Presentation

Monitor for Compliance

Mandatory Baseline

26

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 27: Best practices for Patch Management: An In-Depth Technical Presentation

Continuous Improvement

•Checks and Balances» Review the Effectiveness of Patch Tuesday Remediations

•Metrics Improvement» Modify system settings, distribution parameters and so forth to further optimize

the system for next month’s updates» WAN optimization, polling frequency and minimizing the patches being detected

can all help further optimize performance» Look for computers that did not receive updates at all or those that took

unusually long to receive updates

27

Laying the Groundwork | Week Before | Patch Tuesday | Week After

Page 28: Best practices for Patch Management: An In-Depth Technical Presentation

Q & A

Page 29: Best practices for Patch Management: An In-Depth Technical Presentation

More Information

• Free Vulnerability Scanner Tool» Discover all OS and application vulnerabilities

on your network http://www.lumension.com/Resources/Security-Tools/Vulnerability-Scanner.aspx

• Lumension® Patch and Remediation» Online Demo Video:

http://www.lumension.com/vulnerability-management/patch-management-software/demo.aspx

» Free Trial (virtual or download):http://www.lumension.com/vulnerability-management/patch-management-software/free-trial.aspx

• Get a Quote (and more)http://www.lumension.com/vulnerability-management/patch-management-software/buy-now.aspx#6

29

http://www.lumension.com/Resources/Security-Tools/Vulnerability-Scanner.aspx
http://www.lumension.com/Resources/Security-Tools/Vulnerability-Scanner.aspx
http://www.lumension.com/vulnerability-management/patch-management-software/demo.aspx
http://www.lumension.com/vulnerability-management/patch-management-software/demo.aspx
http://www.lumension.com/vulnerability-management/patch-management-software/demo.aspx
http://www.lumension.com/vulnerability-management/patch-management-software/free-trial.aspx
http://www.lumension.com/vulnerability-management/patch-management-software/free-trial.aspx
http://www.lumension.com/vulnerability-management/patch-management-software/free-trial.aspx
http://www.lumension.com/Resources/Security-Tools/Vulnerability-Scanner.aspx
http://www.lumension.com/Resources/Security-Tools/Vulnerability-Scanner.aspx
http://www.lumension.com/Resources/Security-Tools/Vulnerability-Scanner.aspx
Page 30: Best practices for Patch Management: An In-Depth Technical Presentation

Global Headquarters8660 East Hartford Drive

Suite 300

Scottsdale, AZ 85255

1.888.725.7828

[email protected]

http://blog.lumension.com

mailto:[email protected]
http://blog.lumension.com/

Kaseya: Patch Management Best Practices Working (Temp ...docshare02.docshare.tips/files/8410/84102085.pdf · Kaseya: Patch Management Best Practices Working (Temp) Directory permissions:

Kaseya: Patch Management Best Practices Working (Temp ...docshare02.docshare.tips/files/8410/84102085.pdf · Kaseya: Patch Management Best Practices Working (Temp) Directory permissions:

Documents
Patch Management: 4 Best Practices and More for Today's Healthcare IT

Patch Management: 4 Best Practices and More for Today's Healthcare IT

Technology
Best Aquaculture Practices · Best Aquaculture Practices Fact Sheet ... promotes the advantages of BAP ... from having to patch together various

Best Aquaculture Practices · Best Aquaculture Practices Fact Sheet ... promotes the advantages of BAP ... from having to patch together various

Documents
Best Practices for Security in - ISIN Practices for Security in ... Best practices for patch management ... Continuum, Kaseya & SCCM really help with the burden of

Best Practices for Security in - ISIN Practices for Security in ... Best practices for patch management ... Continuum, Kaseya & SCCM really help with the burden of

Documents
Multi-Effects Processor · Esto patches son gestionados en bancos de 10 patches cada uno. Patch 10 Patch 11 Patch 12 Patch 13 Patch 14 Patch 15 Patch 16 Patch 17 Patch 18 Patch 19

Multi-Effects Processor · Esto patches son gestionados en bancos de 10 patches cada uno. Patch 10 Patch 11 Patch 12 Patch 13 Patch 14 Patch 15 Patch 16 Patch 17 Patch 18 Patch 19

Documents
Patch Based Synthesis for Single Depth Image Super-Resolutionvisual.cs.ucl.ac.uk/ext/depthSuperRes/eccv2012_draft.pdf ·  · 2012-07-31Patch Based Synthesis for Single Depth Image

Patch Based Synthesis for Single Depth Image Super-Resolutionvisual.cs.ucl.ac.uk/ext/depthSuperRes/eccv2012_draft.pdf ·  · 2012-07-31Patch Based Synthesis for Single Depth Image

Documents
Patch Management Best Practices - Amazon S3 and patching their clients’ systems, but how many have a well-honed patch management policy? Patch management is often seen as a trivial

Patch Management Best Practices - Amazon S3 and patching their clients’ systems, but how many have a well-honed patch management policy? Patch management is often seen as a trivial

Documents
TOUGH LOVE: An In Depth Look at Retail Pricing Practices

TOUGH LOVE: An In Depth Look at Retail Pricing Practices

Business
In-Depth Interviews: Techniques and Best Practices

In-Depth Interviews: Techniques and Best Practices

Health & Medicine
 · superpave asphalt mix 25.0mm for full-depth patch, pg 64s-22, level 2 sy 505 superpave asphalt mix 25.0mm for partial-depth patch, pg 64s-22, level 2 ton 505 superpave asphalt

 · superpave asphalt mix 25.0mm for full-depth patch, pg 64s-22, level 2 sy 505 superpave asphalt mix 25.0mm for partial-depth patch, pg 64s-22, level 2 ton 505 superpave asphalt

Documents
LANDesk Patch Management Best practices Chris Rawlings LANDesk Sales Engineer

LANDesk Patch Management Best practices Chris Rawlings LANDesk Sales Engineer

Documents
Best Practices for Full-Depth Reclamation Using Asphalt ...€¦ · CDOT-2015-04 2. Government Accession No. 3. Recipient's Catalog No. 4. Title and Subtitle Best Practices for Full-Depth

Best Practices for Full-Depth Reclamation Using Asphalt ...€¦ · CDOT-2015-04 2. Government Accession No. 3. Recipient's Catalog No. 4. Title and Subtitle Best Practices for Full-Depth

Documents
Patch Management Best Practices - Cressida Technology1 Patch Management Best Practices Whitepaper by: Chris Roberge, MCSE; CCNA Product Manager Cressida Technology Ltd 1 Lammas Gate,

Patch Management Best Practices - Cressida Technology1 Patch Management Best Practices Whitepaper by: Chris Roberge, MCSE; CCNA Product Manager Cressida Technology Ltd 1 Lammas Gate,

Documents
Best Management Practices for the Control of Summer Patch ... · Banner Fungo 50 Tersan 1991 Cleary ... Rubigan 1 inch ... Best Management Practices for the Control of Summer Patch

Best Management Practices for the Control of Summer Patch ... · Banner Fungo 50 Tersan 1991 Cleary ... Rubigan 1 inch ... Best Management Practices for the Control of Summer Patch

Documents
Lumension Guide to Patch Management Best Practices€¦ · responsible for deploying Patch updates need to be trained in the Patch and Remediation application. As a best practice,

Lumension Guide to Patch Management Best Practices€¦ · responsible for deploying Patch updates need to be trained in the Patch and Remediation application. As a best practice,

Documents
Occlusion-aware Depth Estimation Using Light-field Camerasviscomp/projects/LF/...(a) Pinhole model In this section, we show how to modify the initial depth divide the patch into two

Occlusion-aware Depth Estimation Using Light-field Camerasviscomp/projects/LF/...(a) Pinhole model In this section, we show how to modify the initial depth divide the patch into two

Documents
Tyson Jarrett CIP Enforcement Analyst Practices for Security Patch... · Tyson Jarrett CIP Enforcement Analyst Best Practices for Security Patch Management October 24, 2013 Anaheim,

Tyson Jarrett CIP Enforcement Analyst Practices for Security Patch... · Tyson Jarrett CIP Enforcement Analyst Best Practices for Security Patch Management October 24, 2013 Anaheim,

Documents
BtP ti f U di tO lDtbBest Practices for Upgrading to Oracle … · Oracle Grid Infrastructure 11.2.0.2 • Oracle Grid Infrastructure Patch Set 11.2.0.2: • Patch set is not the

BtP ti f U di tO lDtbBest Practices for Upgrading to Oracle … · Oracle Grid Infrastructure 11.2.0.2 • Oracle Grid Infrastructure Patch Set 11.2.0.2: • Patch set is not the

Documents
CABLExpress Installation Best Practices Guide · Cable Management When installing fiber optic jumpers and copper patch cords from the patch panel to active ports within the same cabinet,

CABLExpress Installation Best Practices Guide · Cable Management When installing fiber optic jumpers and copper patch cords from the patch panel to active ports within the same cabinet,

Documents
Sustainable Agricultural Practices for Rondônia, Brazil: An In-Depth Exploration of Deforestation

Sustainable Agricultural Practices for Rondônia, Brazil: An In-Depth Exploration of Deforestation

Documents
Ivanti Endpoint Security Application Control Best Practices Guide ·  · 2018-04-111. Patch endpoints and ... Ivanti Patch and Remediation Best Practices Guide. Run an Antivirus

Ivanti Endpoint Security Application Control Best Practices Guide ·  · 2018-04-111. Patch endpoints and ... Ivanti Patch and Remediation Best Practices Guide. Run an Antivirus

Documents
An In-depth Follow-up Audit of PEHP’s Business Practices

An In-depth Follow-up Audit of PEHP’s Business Practices

Documents
Data-driven Depth Inference from a Single Still Imagevision.stanford.edu/teaching/cs231a_autumn1213_internal/project/fin… · between test patch and the training patch we use the

Data-driven Depth Inference from a Single Still Imagevision.stanford.edu/teaching/cs231a_autumn1213_internal/project/fin… · between test patch and the training patch we use the

Documents
Novell ZENworks Patch Management Best Practices

Novell ZENworks Patch Management Best Practices

Documents
Patch Based Synthesis for Single Depth Image Super-Resolution

Patch Based Synthesis for Single Depth Image Super-Resolution

Documents
Best Practices for Full-Depth Reclamation Using Asphalt

Best Practices for Full-Depth Reclamation Using Asphalt

Documents
CLIENT RELATIONSHIP MARKETING PRACTICES: AN IN- DEPTH

CLIENT RELATIONSHIP MARKETING PRACTICES: AN IN- DEPTH

Documents
In Depth Look at Retail Pricing Practices-Pricing_2013-RSR

In Depth Look at Retail Pricing Practices-Pricing_2013-RSR

Documents
TechPaper #0271 - Patch Management Best Practices

TechPaper #0271 - Patch Management Best Practices

Documents
Security Best Practices : Applying Defense-in-depth Strategy to Protect the NGI_PL

Security Best Practices : Applying Defense-in-depth Strategy to Protect the NGI_PL

Documents