SecAware materials

SecAware logo 150 animated ezgif.gif

3-page generic information security policy about patching and updating computer software.


Patching and updating software involves balancing the associated risks, costs and benefits, while protecting the organization’s interests through pre-release testing, backups and management authorization.


Failing to apply security patches promptly to all relevant systems is a major factor in many cybersecurity incidents, and yet paradoxically incidents may also be caused by applying patches inappropriately.  


Rock, meet hard place.


Delivered as an editable MS Word document, easily customized for your organization's specific needs.

Patching policy