Necessity of Dedicated Vulnerability Analysis and Data Centre Patch Management Process in Banking Sector in India

Necessity of Dedicated Vulnerability Analysis and Data Centre Patch Management Process in Banking Sector in India

  IJETT-book-cover  International Journal of Engineering Trends and Technology (IJETT)          
  
© 2019 by IJETT Journal
Volume-67 Issue-7
Year of Publication : 2019
Authors : Vivek Tirodkar, Dr. Sonali Patil
DOI :  10.14445/22315381/IJETT-V67I7P215

Citation 

MLA Style: Vivek Tirodkar, Dr. Sonali Patil"Necessity of Dedicated Vulnerability Analysis and Data Centre Patch Management Process in Banking Sector in India" International Journal of Engineering Trends and Technology 67.7 (2019): 79-84.

APA Style:Vivek Tirodkar, Dr. Sonali Patil(2019). "Necessity of Dedicated Vulnerability Analysis and Data Centre Patch Management Process in Banking Sector in India"International Journal of Engineering Trends and Technology, 67(7), 79-84.

Abstract
IT industries and banking sectors are incomplete without data centre for their day to day business but the growing threat and attacks create security issues. To protect the data centre from this security threat, vulnerability analysis and data centre patch management must be an integral part of the infrastructure. Even though many banks have patching practices but can’t achieve compliance requirements of security because of the lack of dedicated process. This paper presents the necessity of dedicated vulnerability analysis and data centre patch management process in the banking sector, Role and responsibility of the dedicated team and process outline. The paper focuses on asset protection by scanning vulnerability and mitigating those vulnerabilities. Even though Vulnerability analysis and Data Centre patching are two separates process but they must require work in coordination and cyclic order to continuously protect data centre from new security threats and to achieve compliance requirements.

Reference
[1] “Reserve Bank of India Department of Banking Supervision, Central Office, Mumbai. “Guidelines on Information Security, Electronic Banking, Technology Risk Management and Cyber Frauds.” [Online]. Available: https://rbidocs.rbi.org.in/rdocs/content/PDFs/GBS300411F.pdf.
[2] "Automated Patching for IT Security & Compliance." Automated Patching for IT Security & Compliance - BMC Software. [Online]. Available: http://www.bmcsoftware.in/guides/security-automated-patching.html.
[3] “Get Started with Windows Server Update Services (WSUS).” Get Started with Windows Server Update Services (WSUS) | Microsoft Docs. [Online]. Available: https://docs.microsoft.com/en-us/windows-server/administration/windows-server-update-services/get-started/windows-server-update-services-wsus.
[4] “Red Hat Customer Portal." How to Create a Local Repository for Updates - Red Hat Customer Portal.” [Online]. Available: https://access.redhat.com/solutions/9892.
[5] “AIX Technology Level Update Strategies.” IBM - United States. June 08, 2010. [Online]. Available: https://www.ibm.com/developerworks/aix/library/au-aixtlupdate/index.html.
[6] “Welcome to the Patching Documentation Center.” Solaris Patching Documentation Center | Oracle Technology Network | Oracle. [Online]. Available: http://www.oracle.com/technetwork/systems/patches/solaris/index.html.
[7] “22 Patching Oracle Database.” Patching Oracle Database. January 20, 2012. [Online]. Available: https://docs.oracle.com/cd/E17559_01/em.111/e16599/pat_sidb.htm.
[8] “Nessus Professional.” Tenable™. April 04, 2018. [Online]. Available: https://www.tenable.com/products/nessus/nessus-professional.

Keywords
BANK Security, BANK Asset Management, Vulnerability Analysis, Data Centre Patch Management, Information Security.