all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

OS and software patching

Add to bookmarks
Feb. 5, 2024, 1:23 a.m. | /u/bi-nary

cybersecurity www.reddit.com

Current org is very risk-averse in regards to web-apps... so risk averse that they choose NOT to patch fairly often, because availability is more important than anything else. I have tried, without success, to argue that availability is compromised where vulnerability exists.


In other positions I've held, applying ***security*** ***patches*** of nearly any severity within 30 days was a requirement, without exception. Currently, Getting patches into production takes about 6 weeks... So prod is a minimum 6 weeks behind, and …

apps availability compromised current cybersecurity important org patch patches patching risk security severity software software patching vulnerability web

Visit resource

More from www.reddit.com / cybersecurity

Adopting Pentesting into an SDLC 4 hours ago | www.reddit.com
apps bank bosses clients +9
CrushFTP vulnerability CVE-2024-4040: what you need to know 11 hours ago | www.reddit.com
crushftp cve cve-2024 cve-2024-4040 +2
Internal Data Breach at J.P. Morgan Impacts Over 450,000 Individuals 18 hours ago | www.reddit.com
breach cybersecurity data data breach +2
'Admin' and '12345' banned from being used as passwords in UK crackdown on cyber attacks 18 hours ago | www.reddit.com
admin attacks banned crackdown +4
Holding Pentester accountable for bad files on endpoint 20 hours ago | www.reddit.com
attention bad cybersecurity endpoint +10
Okta warns of "unprecedented" credential stuffing attacks on customers 21 hours ago | www.reddit.com
attacks credential credential stuffing credential stuffing attacks +4
US Post Office phishing sites get as much traffic as the real one 21 hours ago | www.reddit.com
cybersecurity office phishing post office +2
Reuters: Telegram says Ukrainian government chatbots mistakenly blocked 21 hours ago | www.reddit.com
blocked chatbots cybersecurity government +3
What is are the MINIMUM cyber security practices you'd like to see in an organization 22 hours ago | www.reddit.com
business consulting cyber cyber security +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Engineer

@ Core10 | Nashville, Tennessee, United States - Remote
View on infosec-jobs.com

Security Operations Engineer I

@ Jamf | US Remote
View on infosec-jobs.com

IT Security ISSO Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

Compliance Officer

@ Aspire Software | Canada - Remote
View on infosec-jobs.com

Security Operations Center (SOC) - AVP

@ Paytm | Noida, Uttar Pradesh
View on infosec-jobs.com
View more jobs