Defense & Operations
Patch Management
Also known as: Update management
Definition
The end-to-end process of identifying, testing, deploying, and verifying software updates that fix vulnerabilities or bugs.
Examples
- An emergency out-of-band patch cycle for a CISA KEV-listed remote code execution flaw.
- Phased monthly Windows patch deployment using rings: pilot, broad, then production.
Related terms
Vulnerability Scanning
Automated process that probes systems, applications, or containers against known vulnerability signatures to produce a list of potential weaknesses.
Vulnerability Assessment
A systematic review of an environment to identify, classify, and prioritize security weaknesses, typically without active exploitation.
Configuration Management
The discipline of establishing, recording, and enforcing the desired state of systems and applications so configurations remain known, consistent, and secure.
Change Management
Structured process to propose, review, approve, schedule, implement, and review changes to IT systems with controlled risk and clear traceability.
Asset Management
Asset Management — definition coming soon.
Security Posture
Security Posture — definition coming soon.