Risk of Delay

Many organizations have security policies that have an associated time frame. For example a patch policy could be that a patch must be applied to a vulnerable server within a specific timeframe. It makes sense since timely patching is an important security control – but patching can have a business impact (the need to reboot […]