登录查看更多内容

Your organization relies on third-party software. How do you ensure protection when updates are delayed?

由人工智能和领英社区提供技术支持

In today's interconnected business environment, third-party software is a cornerstone of many organizational operations. However, reliance on these applications introduces a significant risk, particularly when updates—which often contain critical security patches—are delayed. Ensuring the protection of your systems in these circumstances requires a proactive and comprehensive approach to information security.

此文章中的业界达人

由社区从 2 条内容中精选。了解更多

Casey R. Morganelli, PhD, CISSP, CIPP/US, CISM, CIPM

Information Security Executive, Distinguished Professor, Published Author, Lifelong Learner

1 Risk Assessment

When updates are postponed, your first step is to assess the risk to your organization. Evaluate the criticality of the affected software, and understand the potential vulnerabilities that may be exploited. This involves reviewing the software's role in your operations and the data it accesses. If it's integral to your business or handles sensitive information, the risk is higher. You'll need to prioritize actions for these high-risk applications, possibly seeking alternative mitigations until the update is available.

添加您的观点

Casey R. Morganelli, PhD, CISSP, CIPP/US, CISM, CIPM

Information Security Executive, Distinguished Professor, Published Author, Lifelong Learner
举报内容
When updates are postponed the first step is to conduct a thorough risk assessment. First develop an infrastructure and data flow diagram to understand all the dependencies and if sensitive data flows through it. This will also allow you to determine possible attack vectors and define the overall attack surface. Once you performed a risk assessment as business impact analysis, you’re ready to move onto the next step.

已翻译

赞

2 Patch Management

Effective patch management is crucial for maintaining security. When third-party updates are delayed, review your patch management policy to ensure it's equipped to handle exceptions. This may involve temporarily implementing compensating controls or additional monitoring to detect any unusual activity. It's important to document any deviations from standard procedures, as well as the rationale behind them, to maintain an audit trail and ensure that once the update is released, it's applied promptly.

添加您的观点

Casey R. Morganelli, PhD, CISSP, CIPP/US, CISM, CIPM

Information Security Executive, Distinguished Professor, Published Author, Lifelong Learner
举报内容
When patches are postponed it’s necessary to implement compensating controls to secure the system. These can include logical or physical segregation, IPS/IDS, encryption, etc.

已翻译

赞

3 Vendor Communication

Open lines of communication with your software vendors are vital. When facing delayed updates, reach out to them for information on the expected timeline and any potential security advisories. Understanding the reasons behind the delay can help you gauge the urgency of finding interim solutions. Additionally, vendors may provide recommendations or temporary fixes to help secure your systems in the meantime.

添加您的观点

4 Alternative Solutions

While awaiting updates, explore alternative solutions to maintain security. This could involve deploying additional firewalls or intrusion detection systems (IDS) around the vulnerable software, or isolating it from the rest of your network to limit potential exposure. Consider whether you can temporarily substitute the software with a less vulnerable alternative or adjust user access levels to minimize the risk of exploitation.

添加您的观点

5 Employee Awareness

Your employees are a critical line of defense. Inform them about the delayed updates and provide guidance on how to operate securely during this period. This may include increased vigilance in detecting phishing attempts or following stricter data handling procedures. Employee awareness can significantly reduce the chance of a security breach originating from human error or social engineering tactics.

添加您的观点

6 Continuous Monitoring

Finally, intensify your monitoring efforts. Use security information and event management (SIEM) systems to keep an eye on network traffic and detect anomalies that could indicate a breach. Regularly scan your systems for vulnerabilities and ensure that all other software is up to date to prevent attackers from exploiting other weak points in your defense while you wait for the delayed update.

添加您的观点

7 Here’s what else to consider

This is a space to share examples, stories, or insights that don’t fit into any of the previous sections. What else would you like to add?

添加您的观点

Information Security

+ 关注

给文章评分

我们借助人工智能创建了此文章。您认为这篇文章怎么样？

很棒不太好

举报此文章

查看全部

Your organization relies on third-party software. How do you ensure protection when updates are delayed?

1

2

3

4

5

6

7

1 Risk Assessment

2 Patch Management

3 Vendor Communication

4 Alternative Solutions

5 Employee Awareness

6 Continuous Monitoring

7 Here’s what else to consider

Information Security

给文章评分

感谢您的反馈

更多Information Security相关文章

更多相关阅读内容

Your organization relies on third-party software. How do you ensure protection when updates are delayed?

1

2

3

4

5

6

7

1 Risk Assessment

2 Patch Management

3 Vendor Communication

4 Alternative Solutions

5 Employee Awareness

6 Continuous Monitoring

7 Here’s what else to consider

Information Security

给文章评分

感谢您的反馈

查看其他技能