Editor's Note: This is the first of our new Server Sleuth columns. Each week, the Sleuths will help you crack your tough server-management questions - which you can send them at sleuths@nwfusion.com. See the Server Sleuths bio page for more on our crack detectives.

Q. Securing our servers is our IT organization's biggest concern. With new regulations concerning the protection of data and new viruses popping up almost daily, what can I do to ensure that our servers are up-to-date with the latest patches and service packs? 

Also, can you address the speed vs. security question? Meaning, once I get a patch, to ensure it does not bring down the network, I have to check it to make sure there are no conflicts. If there are, I have to manually make changes to the patch, which drastically increases the amount of time it takes to deploy the individual patch; sometimes by as much as a month. Is there anything I can do to speed up the process to ensure my network is as safe as possible?

I've worked with teams who told me that before they solved it, patch management was a "can't see the forest for the trees" problem.  They spent time and energy tackling each patch or update as a single event, working on a single layer of the configuration, like a single tree.  The problem is that sometimes their solutions affected other aspects of their networking "forest." One tree leans a bit, and others can fall.  Without accounting for the entire environment, patch management can result in instability as patches and updates impact other elements and create disruptions.

The whole software stack must work together, and continue to do so even after reprovisioning or changes.  So patching one aspect of one layer at a time is slow and risky, and frankly not working in the real world. I believe that automation is key to risk avoidance as well as speed.

The fundamental idea is that you need to manage patches holistically.  In other words, you need to look at the full configuration, the entire stack - operating system, applications, content, settings, etc.- to do patch management effectively (getting the right patch to the right system), efficiently (quickly), and risk-free (no disruptions because of unforeseen conflicts when patches and updates are applied across the whole environment).

Whitepapers

• 6 Simple Steps to Disaster Recovery Planning
• PRICING STUDY: GROUNDWORK OPEN SOURCE VS. HP SOFTWARE
• Boost Productivity While Cutting Costs with Next-generation Collaboration
• Deploying Virtualized NetWare on Linux Whitepaper
• Driving Business Success Through Workgroup Choice and Flexibility
• Toward More Flexible, Next-Generation Collaboration Solutions

View more DATA CENTER whitepapers

Webcasts

• Creating a high performance workplace with wireless networking
• Harnessing the power of communications to increase workplace performance
• Making data centers the IT strategic focus
• Protecting assets and employees with IP Video Surveillance
• Stay out of the headlines: Detecting and preventing network intrusions
• Transforming the Enterprise WAN Edge: Video from Cisco

View more DATA CENTER webcasts

Special Reports

• IT Buyer's Guide To: Data backup and Replication
• Bringing IT Operations Management to Open Source and Beyond
• Data Centers: At the center of the action
• Executive Guide: Virtualization Reality Check
• Executive Guide: Storage Heats Up
• Get More From Your WAN

View more DATA CENTER special reports