Patch and vulnerability management is a security practice designed to proactively prevent the exploitation of IT vulnerabilities that exist within an organization’s internal, external, and cloud environments. They are components of a vulnerability management program which gives organizations a framework for managing risk across the enterprise network.
A well-run vulnerability management program is the foundation that supports an organization’s corporate security, risk, and compliance programs. It provides a roadmap for security teams to know what is expected of them and how they will use the resources they have. Establishing a new plan involves defining the objectives, identifying stakeholders, defining regulatory and other legal requirements, defining stakeholder and management involvement, and developing tools to discover, track, and determine the disposition of vulnerabilities in the environment.