CISSP CCSP Patch Management Last Minute Exam review
HTML-код
- Опубликовано: 12 сен 2024
- In this video, I have covered how patch management works in the organization. What will the thought process of cissp and ccsp aspirants while preparing #patchmanagment topic
Patch Management topic is a very important topic for #cissp and #ccsp exam
Credit CBK and Sybex Book
Patch management is the process that helps acquire, test, and install multiple patches (code changes) on existing applications and software tools
An essential part of Configuration and Change Management
Patch Management Process
Notification
Applicability
Determine impact
Test the patch
Take backup
Apply the patch
Validate installation
Receive user feedback
Prepare for rollback if any error
Document
#cisspdomain7 #securityoperation #ccsptraining
When a vulnerability and patch has been identified, the asset owner should determine if it affects any ICS in the operation.
If it does affect one or more systems, then a work around or alternative action should be considered.
If a work around is found, then the patch should be evaluated and scheduled as part of the regular patch cycle.
If there are no work-arounds, then the patch review team will have to analyze the risk associated with the patch.
Factors that are considered in the analysis include the key elements of the vulnerability footprint measured against the potential impact to the business operations. If the risk is high, then an immediate patch may be required. Conversely, if there are strong business constraints or operational concerns related to implementing the patch at a specific time, then it may be necessary to hold off on patching the system until the scheduled maintenance window.
Once the patch has been implemented all applicable documentation and patch records should be updated.
Greate Learning Video and anyone can understandable
Guruji, As usual these videos are gold. The ICS flow is slight confusing but overall understood the patch management.
Thank a lot prav.
Please do a video on OSI layer also.
Great effort Prabh, Thanks.
Very well explained Prabh!
Hi prabh,
Nice explanation..expecting more vedios from you prabh ....can I do a session in TPRM if possible...
Very Informative🤓!
Very informative 😊
Great
I don't understand your flowchart. It seems to me it should start with "ID Vulnerability" and then move to the "Affects ICS?" decision. If the answer is "No", then why loop back to "Continue Operations," which you then have going back to "Affects ICS?", which this creates a vicious loop if the answer is "No" again.
7.7K views and only 208 likes. Clearly people are too busy with their prep, even to put a like!