Kongress / Tagung
Referent: Dr. Alexander Glebovskiy, CISA, CIA, CFE, CRMA
Veranstaltungsseite: grc-kongress.de/veranstaltung-20715-0-auditing-of-patch-a...
Sprache: Englisch
Aufrufe gesamt: 12, letzte 30 Tage: 1
Effective patch and vulnerability processes are essential to enhance the cyber security resilience of a company. Patch management involves the distribution and application of updates to address defective code and security risks in IT assets. Alongside, vulnerability management focuses on identifying, and mitigating security weaknesses causing service disruptions. Both processes are interconnected and require a holistic evaluation to provide a reasonable assurance on control design and operating effectiveness.
Notably, patch and vulnerability management are often outsourced to service providers, leading to a limited internal expertise in these fields. The scarcity of in-house knowledge in these areas can present difficulties for auditors, seeking to thoroughly assess the internal controls.
Publikationen: 10
Veranstaltungen: 2
Aufrufe seit 07/2005: 1661
Aufrufe letzte 30 Tage: 4