CISM Certified Information Security Manager – Question1078

Which of the following is the MOST appropriate method for deploying operating system (OS) patches to production application servers?

A.
Batch patches into frequent server updates
B. Initially load the patches on a test machine
C. Set up servers to automatically download patches
D. Automatically push all patches to the servers

Correct Answer: B

Explanation:

Explanation:
Some patches can conflict with application code. For this reason, it is very important to first test all patches in a test environment to ensure that there are no conflicts with existing application systems. For this reason, choices C and D are incorrect as they advocate automatic updating. As for frequent server updates, this is an incomplete (vague) answer from the choices given.