NIST National Cybersecurity Center of Excellence (NCCoE) has partnered with Microsoft to develop concise industry guidance and standards on enterprise best practice patch management.
The pair is also calling on vendors and organizations to join the effort, including those that provide technology offerings for patch management support or those with successful enterprise patch management experience.
According to Mark Simos, Microsoft’s Cybersecurity Solutions Group lead cybersecurity architect, the effort began following the massive 2017 WannaCry cyberattack. Microsoft released a patch for the targeted flaw months before the global cyber incident, but many organizations failed to patch, which allowed the malware to proliferate.
Read more at: Health IT Security