Microsoft Security Response Center

Locations

United StatesChangeAll Microsoft Sites

Search

Print Email Share
Print Email Share

Microsoft Security Update Guide, Second Edition

The Microsoft Security Update Guide is a valuable source of in-depth information and tools that can help you protect your IT infrastructure while creating a safer, more secure computing and Internet environment. We developed this guide to help IT professionals better understand and maximize Microsoft security update release information, processes, communications, and tools.

What’s included? Let us show you.

Get to know the security update release process.

Do you want to get a better understanding of the Microsoft Security Update release process? We’ll give you a complete rundown of the guidance and resources that accompany updates. We’ll also provide a reference guide you can use to develop a customer risk-management framework.

Learn how to

Obtain and read Microsoft security notifications Assess the security update guidance Verify the notice is genuine

Details include information on the following:

  • Security bulletin advance notifications.
  • Security bulletins and summaries.
  • Security updates.
  • Knowledge Base (KB) articles.
  • Security advisory.
  • The predictable security update release process.
  • How to identify fraudulent notifications.

Learn how to evaluate risk

How do you assess what risk a newly identified vulnerability poses to your organization? In this section, we show you how Microsoft resources can help you understand how the vulnerability affects you, the overall risk, and steps you can take to mitigate it.

Learn how to

Formulate risk management framework Determine whether the vulnerability affects you Assess vulnerability risk and impact Evaluate other potential security update implications

Details include:

  • What to do if you don’t have a risk management process.
  • How to assess whether the vulnerability applies to you.
  • Ways to gather vulnerability intelligence.
  • Methods for determining the vulnerability risk.
  • Details on the Microsoft Severity Rating System.
  • Additional resources for risk evaluation.

See how to mitigate security risks

When faced with a vulnerability, how do you mitigate the risk? We’ll point you in the right direction.

Learn how to

Evaluate short-term mitigation options and workarounds Determine availability of active protections Consider urgent update deployment

You'll be able to get:

  • A short-term defense
  • Resources to help you evaluate mitigation efforts

Understand how quickly you need to apply updates

How quickly should you deploy updates when faced with a security risk? We recommend that you have at least two timelines for handling security updates based on your risk assessment.

Learn how to

Plan the deployment Determine availability of update Obtain the required update files Create the update package Test and deploy the package

In this section, we'll tell you why, show you how, and give you additional details on:

  • The six steps to deploy an update.
  • How to plan your deployment.
  • Trusted sources you can use to get the required security update files.
  • How to create, test, and deploy Update Packages.
  • A process for urgent package application.

Assess your update

How well did your update go? What happens after you’ve deployed an update? What can you do to better manage updates in the future? We’ll show you methods to assess these questions.

Learn how to

Confirm successful installation Conduct post-implementation review Remove short-term mitigations

Details include:

  • How to confirm update installation.
  • When and how to uninstall a security update.
  • When to uninstall short-term mitigations.
  • Details on post-implementation reviews.

Get ongoing security

What can you do to improve security, even when there aren’t any security updates available? How do you stay alert to threats in today’s evolving IT landscape? In this section, we’ll go over how you can get better oversight into your IT systems and how secure they are.

Learn how to

Understand and take action on Security Bulletin and Advisory revisions Consult other Microsoft security resources Remain vigilant and stay informed

Topics include:

  • Details on major and minor Security Bulletin and Advisory Revisions
  • The constant threat of malicious software—and how to combat it
  • Other security resources

Download the Microsoft Security Update Guide today!

Need Support for Security Updates?

Customers in the United States and Canada can receive security update-related technical support by calling 1-866-PC-SAFETY (1-866-727-2338). There is no charge for support calls that are associated with security updates. Please note: For general support (that is, help with issues not related to security updates), please visit our support page.

International customers can receive support from their local Microsoft subsidiary. Visit the International Support website at http://support.microsoft.com/common/international.aspx.

Was This Information Useful?