Having good patch management is essential. Patch management is the process of maintaining systems and software updates, encompassing how and when they are kept up to date, change control, testing, prioritisation and in what time frame they are applied. Being able to keep on top of your Microsoft patching as well as other system software is very important. With automated off the shelf hacking tools being made available as soon as exploits are released, it’s important to have a process to follow in order to patch a system when a zero day exploit hits the news. It’s also important to embed the patching policy into the business and have the appropriate management buy-in. The UK government recognises patch management as a key control that business should be following. Patch management is one of the five mandated controls of Cyber Essentials. Cyber Essentials is a UK government scheme designed to allow businesses to demonstrates to their suppliers and customers good cyber security practices.
The five key controls of Cyber Essentials are:
- Boundary firewalls and internet gateways
- Secure Configuration
- User access control
- Malware protection
- Patch management
Here at Aristi our qualified Cyber Essentials assessors who specialise in Cyber Security will guide you through the process. As part of the Cyber Essentials Plus certification we will test your patch management along with the four other controls to make sure you are demonstrating good cyber security. We can also offer you guidance on any remediation tasks you may need to perform. We can help your organisation to comply with the requirements of Cyber Essentials and achieve formal certification against the standard. Give your organisation the edge show your competitors, suppliers and customers you demonstrate good cyber security within your business.