User Manual

Cybersecurity Concepts – How to Secure the System

Web Browser Security

70 | 85

A6V11646120_enUS_b_40

locations, helps keep your patch management efforts up to date. It is therefore

important to inventory your network on a regular basis.

● Perform application patching

Many limitations of OS platform support and discovery services lie in accounting for

only applications from a specific OS and ignoring third-party software. Much of

Windows software vulnerabilities come from non-Microsoft applications running on

Windows, which means you not only need comprehensive OS coverage, but also

comprehensive application coverage.

● Apply coverage on and off premise

Patching your OS and applications will be meaningless, however, if not done for every

computer in every location. Users can work remotely without ever touching the

network, but the network must secure these users as if they were on premise. Patch

management systems and other security controls should provide the same level of

coverage and control off premise as they do on premise.

● Patch frequently

As more end user systems can leave the network, patching frequency becomes more

important. You may be following the patching patterns of prominent tech influencers,

but they could be wrong for you. Microsoft may keep to a predictable security patch

release cycle, but most other vendors have unpredictable release schedules.

NOTICE

End of Life IT Components

IT components must be replaced as soon they pass their End of Life. EOL IT does

not meet today’s needs for cybersecurity.

Use a Test System

Siemens cannot guarantee that updating of third-party components can be used

without consequences on the operation of the overall system. Depending on the

criticality of the system, we recommend establishing a release process.