Updating your organisation’s software doesn’t just give your staff the latest tools and applications to work with, it also improves your network security.
For the final part of this month’s Toolkit Insider Series we are focusing on the Software Updates and Patching Policy from our Cyber Essentials Toolkit. Read on to find out who is responsible for this policy, the benefits of implementing it and what you need to consider when updating software.
The Cyber Essentials Toolkit
Built on expert knowledge gained from numerous cyber security implementation projects, this toolkit includes procedures and processes for ensuring that your Cyber Essentials controls deliver what they need to.
Software Updates and Patching Policy
What is a Software Updates and Patching Policy?
Updating computers, phones, laptops and tablets plays an important role in protecting your organisation from security threats.
Manufacturers release regular software updates not only to add new features but also to fix any security vulnerabilities that may have been found. Installing these updates is quick, easy and, more importantly, free.
This policy enables organisations to have a set policy for all staff to follow when it comes to software updates and policies. It describes what classifies as software, how often software and patching should be checked, and how the head of IT should be reviewing these updates.
The importance of updating your software
The 2017 Equifax data breach, which potentially affected 143 million Americans, is a great example of why organisations need to update their software to avoid breaches. Criminal hackers were able to access customers’ Social Security numbers and home addresses through a known vulnerability in Equifax’s data web application. A solution for this was available months before the breach, meaning it could have been avoided if Equifax had updated its software.
Inside our Software Updates and Patching Policy
Here’s a sample of our Software Updates and Patching Policy, highlighting what you need to consider when updating software.
In September we will be taking a look at documents inside the ITSM, ITIL & ISO/IEC 20000 Implementation Toolkit. The first template from this toolkit will be the Change Management Policy.
20% discount on all Cyber Essentials products
Throughout August, IT Governance Publishing is offering a 20% discount on all Cyber Essentials products, including the Cyber Essentials Toolkit. Just enter code CYBER20 at checkout to receive your discount.
Find out more about the Cyber Essentials Toolkit here.
See our other Cyber Essentials products here.
Interested in this document?
To purchase the Software Updates and Patching Policy separately, contact us at firstname.lastname@example.org.