(CS)²AI Online™: Patch Now, Next, or Never: Demystifying Patching Strategies

When it comes to patching in Operational Technology (OT) environments, the decision isn’t always straightforward. Should you patch immediately, wait for the next planned maintenance cycle, or take a different approach? These are the questions OT professionals face every day as they balance cyber security, operational uptime, and risk management.

By exploring practical strategies and real-world challenges, this presentation will guide you through an effective patch management program. You’ll walk away with actionable insights to strengthen your cyber security posture while maintaining operational efficiency.

We will cover:

• Regulatory Guidance on Patching: Understanding compliance requirements like NERC CIP and CISA.
• Challenges in Patching OT Systems: Overcoming obstacles such as asset diversity, vendor approvals, and limited resources.
• The Virtuous Loop (VL): A continuous process for effective patch and vulnerability management.
• Key Challenges of the Virtuous Loop: Addressing complexities in asset inventory, prioritization, and validation.
• Asset Consolidation: Techniques for identifying, categorizing, and contextualizing assets.
• Patch & Vulnerability Identification: Managing the overwhelming volume of patch and vulnerability data.
• Patch Now, Next, Never?: Strategic decision-making for prioritizing patching efforts.
• Remediation Identification: Exploring mitigation options like patch deployment, hardening, and virtual patching.
• Demystifying Virtual Patching: When and how to use temporary mitigation strategies effectively.
• Tracking Execution & SLAs: Monitoring progress, ensuring compliance, and optimizing patch management programs.
• Key Takeaways & Best Practices: Practical insights for building resilient OT cyber security strategies.

This webinar provides practical guidance and real-world solutions to help organizations secure critical infrastructure, reduce risk, and achieve compliance.

This event is sponsored by Foxguard

-----------------------------------------------------------------------------------------

Becoming a paid member is quick and easy (and helps us keep offering these educational opportunities!). Please join now!

All past seminars and symposiums are available to paid CS2AI.ORG members. Check out the Resources area of our website in the Members Portal

Certificates for Professional Development/Continuing Education Units (PDUs/CEUs) are available for all registered individuals who attend at least one hour of the event.

*Please note that (CS)²AI Online™ events are provided free of charge as educational career development content through the support of our paid members and the generous contributions of our corporate Strategic Alliance Partners. Contact information used in registering for our directly supported seminars may be shared with sponsors funding those specific events. Unless noted on our Zoom Event registration page, all events are open for direct funding support.