Purpose: Ensure timely application of security updates to protect systems from vulnerabilities.

Scope: Applies to all systems and software within Quincy College's IT infrastructure.

Policy: Implement a robust patch management process.

Procedures:

  • Conduct weekly vulnerability scans using tools like Nessus or Qualys.
  • Apply critical patches within 48 hours; high-severity patches within 7 days.
  • Maintain logs of all patches applied, including dates and system impact.
  • Perform post-patch verification to ensure systems are functioning correctly.

Original: July 2024