We’ve all heard the saying “a stitch in time saves nine,” a proverbial expression that, simply put, means the sewing of a small hole now saves even more stitching later when the hole becomes larger. In the world of cyber-security, however, a “patch in time does NOT necessarily save nine!”
Patching is important, as a well-planned program with proper prioritization and testing can reduce risk. In the Operational Technology (OT) world, however, traditional vulnerability and patch management programs can be very problematic to implement.
Let’s look at 3 reasons why a traditional patch management program does not work in a manufacturing OT environment.
- The Frequency of Patching in OT
- The Issue of Legacy Patching in OT
- The Human Toll of Patching OT