Implementing a Patch or Mitigating a Risk - PAS ICS Integrity - 7.3 - Help - Intergraph

ICS Integrity Help

Language
English
Product
PAS ICS Integrity
Subproduct
ICS
Search by Category
Help
PAS Version
7.3

Once a patch has been tested and evaluated, you can choose to implement the patch, or you might choose to mitigate the risk in another way instead of implementing the patch. You can manage patches in multiple ways, by patch or by computer. ICS Integrity provides the flexibility for you to manage patches using the processes you want.

Often when managing patches, you will choose to implement patches on a computer-by-computer basis. Make sure the patch has been tested with all vendor products on the computer where you are implementing the patch. The Patch Management window provides multiple viewing options to help identify where patches have been implemented and where they need to be applied.

To implement a patch or mitigate the risk:

  1. Open the ICS Integrity web interface.

  2. Click Patches > Patch Management in the left navigation bar.

  3. Expand the Patch Info section by clicking the arrow to expand that area.

  4. Set your filters to determine which patches to include in the search results. For more information, see Viewing a Filtered List of Patches and Assessment Information.

  5. Expand the Options section by clicking the arrow to expand that area, and then select how you want to organize the search results, such as by Computer Systems for which the patches are Released for Implementation and Required.

    user-cyber-patch-mgmt-comp-filter

    If you select Computer Systems for which the patches are Released for Implementation and Required, you can then initiate implementation and mitigation cases for one or more computers. For more information about these options, see Performing Patch Management.

  6. Click Search to retrieve data for the patches that match the selected criteria. If the search returns results that match the specified criteria, a list is displayed.

  7. If you want to view the list of patches that match the filter criteria you specified for a specific computer, click the arrow next to the computer. The list of patches that match the filter criteria are displayed below the computer.

  8. If you want to display the Assessment window for a specific patch, click Edit next to the patch. Then, make sure the patch is tested and released for implementation. On the Assessment window, the Release for Implementation check box should be checked with a specified Release Date.

  9. If you want to start or add to a case for one or more computers, check the check box next to each computer you want to include, and then click the appropriate button, such as Start New Implementation Case, in the Patch Management window.

    user-cyber-patch-mgmt-comp-case

  10. If you want to start or add to a case for a specific patch, click Edit next to the patch, and then click the appropriate button, such as Start New Implementation Case, in the Assessment window.

  11. In the new Case window, populate the fields as necessary to capture details of the new Implementation or Mitigation Plan, and then click Start. After a few calculations, the Check List window is displayed.

  12. Complete the Check List window with a signature, and the Assessment window will display either a Success or Failure message. The Successful Implementation message is similar to the following figure:

    user-cyber-patch-mgmt-success