Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Microsoft Rollup Patch Status Dashboard

by Steve Tilson
June 22, 2017

A Rollup is defined by Microsoft as “a tested, cumulative set of updates. They include both security and reliability updates that are packaged together and distributed over Windows Update, WSUS, System Center Configuration Manager and Microsoft Update Catalog for easy deployment. The Monthly Rollup is product specific, addresses both new security issues and nonsecurity issues in a single update and will proactively include updates that were released in the past.”

Leveraging Tenable SecurityCenter's ability to use regular expressions, this dashboard provides an analysis of the last installed Microsoft Rollups by month and year. A matrix showing a twelve-month breakdown is displayed on the dashboard for each year from 2016 through 2019. As Microsoft Rollups are detected on hosts, indicators are highlighted for the specific months and years. Information provided in this dashboard gives analysts a clear picture of how effective the patch management process is working and the most current rollup patch installed.

The Microsoft Security Rollup Enumeration dashboard is available in the SecurityCenter Feed, a comprehensive collection of dashboards, reports, Assurance Report Cards and assets. The dashboard can be easily located in the SecurityCenter Feed under the category Monitoring.

The dashboard requirements are:

  • SecurityCenter 4.8.2
  • Nessus 6.9.1

Tenable SecurityCenter Continuous View (SecurityCenter CV) provides continuous network monitoring, vulnerability identification and security monitoring. SecurityCenter CV is continuously updated with information about advanced threats, zero-day vulnerabilities and new types of regulatory compliance configuration audit files. Tenable constantly analyzes information from unique sensors, delivering continuous visibility and critical context, and enabling decisive action that transforms a security program from reactive to proactive. Active scanning periodically examines the applications on the systems, the running processes and services, web applications and configuration settings. Agent scanning enables scanning and detection of vulnerabilities on transient and isolated devices. Tenable enables powerful, yet non-disruptive, continuous monitoring of the organization to ensure vulnerability information is available to analysts.

The components in this dashboard include:

Microsoft Rollups 2016:  This matrix presents a yearly analysis by month of Microsoft Rollups applied to hosts. As hosts are discovered having the specific Rollup applied, the box is highlighted in purple. Clicking on a highlighted indicator brings up the analysis screen, allowing further investigation of the hosts.

Microsoft Rollups 2017:  This matrix presents a yearly analysis by month of Microsoft Rollups applied to hosts. As hosts are discovered having the specific Rollup applied, the box is highlighted in purple. Clicking on a highlighted indicator brings up the analysis screen, allowing further investigation of the hosts.

Microsoft Rollups 2018:  This matrix presents a yearly analysis by month of Microsoft Rollups applied to hosts. As hosts are discovered having the specific Rollup applied, the box is highlighted in purple. Clicking on a highlighted indicator brings up the analysis screen, allowing further investigation of the hosts.

Microsoft Rollups 2019:  This matrix presents a yearly analysis by month of Microsoft Rollups applied to hosts. As hosts are discovered having the specific Rollup applied, the box is highlighted in purple. Clicking on a highlighted indicator brings up the analysis screen, allowing further investigation of the hosts.