The system must support automated patch management tools to facilitate flaw remediation to organization defined information system components.

From Windows 8/8.1 Security Technical Implementation Guide

Associated with IA controls: VIVM-1

Associated with: CCI-000366

SV-48384r2_rule The system must support automated patch management tools to facilitate flaw remediation to organization defined information system components.

Vulnerability discussion

The organization (including any contractor to the organization) must promptly install security-relevant software updates (e.g., patches, service packs, hot fixes). Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling must also be addressed.

Check content

Verify the organization has an automated process to install security-related software updates. If it does not, this is a finding.

Fix text

Establish a process to automatically install security-related software updates.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.