An IS auditor finds that a required security patch was not installed on a critical server for more than 6 months. The NEXT course of action should be to:

Last Updated on December 19, 2021 by Admin 3

An IS auditor finds that a required security patch was not installed on a critical server for more than 6 months. The NEXT course of action should be to:

  • determine the root cause of the delay.
  • review patch management procedures. 
  • request the patch be installed as soon as possible.
  • notify senior management of audit findings.
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments