SANS DFIRCON Spring 2021 features eight DFIR courses, plus DFIR NetWars and Coin Slayer! Register now for best offers.

Reading Room

Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.





ISO-17799

Featuring 7 Papers as of April 22, 2018

  • Patch Management SANS.edu Graduate Student Research
    by Brad Ruppert - January 24, 2008 

    This paper discusses the steps required to implement a successful security patchmanagement solution which can be used to help protect the enterprise. Patch management is about mitigating risk to the confidentiality of your data and the integrity of your systems. Patch management can be the most effective tool used to protect against vulnerabilities and the least expensive to maintain if implemented effectively. The goal of this paper is to describe how to establish a routine patch-management procedure and to make it a part of standard operations.

  • View All ISO-17799 Papers

Most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large. SANS attempts to ensure the accuracy of information, but papers are published "as is". Errors or inconsistencies may exist or may be introduced over time as material becomes dated. If you suspect a serious error, please contact webmaster@sans.org.

All papers are copyrighted. No re-posting or distribution of papers is permitted.

SANS.edu Graduate Student Research - This paper was created by a SANS Technology Institute student as part of the graduate program curriculum.

Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.





Latest Whitepapers

Fear of the Unknown: A Meta-analysis of Insecure Object Deserialization Vulnerabilities
By Karim Lalji

Open-Source Endpoint Detection and Response with CIS Benchmarks, Osquery, Elastic Stack, and TheHive
By Christopher Hurless

Learning from Learning: Detecting Account Takeovers by Identifying Forgetful Users
By Sean McElroy

Last 25 Papers »

Latest Tweets @SANSInstitute

We're counting down the #20CoolestCareers in #Cybersecurity [...]
April 12, 2021 - 7:30 PM

TOMORROW | Join @robertherjavec with @HerjavecGroup and form [...]
April 12, 2021 - 4:02 PM

#TechTuesday is a FREE workshop series aimed at providing yo [...]
April 12, 2021 - 3:10 PM

Contact Us

Mon-Fri: 9am-8pm ET (phone/email)
Sat-Sun: 9am-5pm ET (email only)
301-654-SANS(7267)
info@sans.org

"It has really been an eye opener concerning the depth of security training and awareness that SANS has to offer."
- Michael Hall, Drivesavers

"Just amazing content and instruction, it's really a 'must do' for any info sec professional."
- Mark Austin, PHH Mortgage

"SANS always provides you what you need to become a better security professional at the right price."
- Rasik Vekaria, BP