Patching Systems

Administrators should ensure that security patches are up-to-date for systems, applications, and infrastructure. In addition to increased downtime and costs, poor IT patch management increases the likelihood of security vulnerabilities being present that could be exploited to gain unauthorized access to systems, applications, and infrastructure.

To the extent possible, patches should be tested in a test/staging environment first before being deployed into the production environment to verify that patches won’t “break” any functionality.

Because patches affect production, they should be viewed as a “change” and follow your organization’s structured change management process.