-
January 21st, 2004, 04:21 PM
#1
Junior Member
patches
Hi,
should patch management role be classified as server support or security admin. pls comment. thanks
-
January 21st, 2004, 04:52 PM
#2
In my shop it is classified as server support, however, I from a security perspective, have a high level of control over the process to ensure it meets the security requirements of the company.
Cheers:
-
January 21st, 2004, 05:03 PM
#3
Junior Member
can you give me the details of what this high level of control over the process will do?
-
January 21st, 2004, 05:20 PM
#4
Basically, I establish the criteria by which patches are rolled out. For example, servers that reside in our DMZ, if there is a 'critical' patch required, they must be installed within 24 hours of the patch being released. This means the server is 'ghosted' and the patch is installed with minimal testing. For servers which are on my internal LAN, 'critical' patches are install within 2 weeks of being announced. That leaves time for a little better testing. All non-critical patches are installed as part of our normal maintenance process.
Does that help a bit?
-
January 21st, 2004, 05:25 PM
#5
Junior Member
do u mean that you have 1 person doing the depolyment and the other doing the process monitoring?
-
January 21st, 2004, 05:33 PM
#6
Kind of like that, I ensure the patches are being deployed by our server group. If they are have problems or issues they will report to me. At this point in time, the process has worked quite well. I am sure there are other on this board that will have other opinions.
Cheers:
-
January 21st, 2004, 05:48 PM
#7
Junior Member
for my case i only can afford 1 person to do the job, how can i justify that patch management belongs to server support?
-
January 21st, 2004, 05:56 PM
#8
Originally posted here by sentme_mail
for my case i only can afford 1 person to do the job, how can i justify that patch management belongs to server support?
Well...is the server group responsible for installing other things on the servers (os, applications, etc)? Then why would they not be responsible for installing patches, they are after all, part of the OS or Application.
Cheers:
-
January 21st, 2004, 06:11 PM
#9
Junior Member
yap, the server group responsible for installing other things on the servers (os, applications, patches, etc)
but what reasons can i give to justify that they should also be incharge of the process ?
-
January 21st, 2004, 06:18 PM
#10
If the OS's and Applications belong to them, they are responsible for them, then the patches to those systems also belong to them, they must take ownership of them. Patches are a part of the OS or Application, which they (the server group) own. I believe it's just that simple. If your claiming ownership over a systems OS & application you own everything that is bundled with those systems.
Cheers:
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|