Formal Release Process
We work with you to develop a formal process for handing off software updates and documenting step-by-step release procedures. The security of your systems is greatly enhanced by this separation of duty.

Oftentimes when developers or internal administrators perform production updates they make system changes, yet fail to document them. Unmanaged change control leads to unpredictable results. In a world where 24x7 uptime is required, unpredictable is simply unacceptable.

Integrity Assurance We take the guesswork out of change control management. Using integrity management software from Tripwire, we automatically track changes to system files and configuration. Any change is reported to a central console where it is either approved or rolled back.

Tripwire® was named “2006 Product of the Year” by Information Security Magazine.

In addition, Tripwire provides an audit trail of all changes to the system. But more importantly it provides everyone with the peace of mind that no change will go undetected.

Practical Patching
Our goal is to strike a balance between keeping operating system patches up-to-date and minimizing system changes and reboots. We will work with you to arrange an appropriate patching schedule that allows ample time for testing without compromising security.

The threats of many so-called high severity patches may pose little risk to a hardened production server. We first do a risk analysis to determine whether or not an immediate patch is warranted. Should a critical patch be required, we will coordinate with you to develop a plan of action accordingly.