General Page
This professional consulting service assists clients with deploying patch management measures for mitigating the risk of
attackers finding vulnerabilities to exploit. One of the most fundamental and important cyberdefenses is Vulnerability Management. PowerSC provides Trusted Network Connect and Patch Management (TNC) as a key solution for implementing your Vulnerability Management cyberdefense. TNC is the AIX/VIOS patching component of PowerSC that automates and reduces the effort needed to properly update AIX and VIOS. TNC provides updates for security interim fixes, service packs, and technology levels. The PowerSC Graphical User Interface (GUI) server provides browser-based centralized management of these security measures deployed on endpoints configured with the PowerSC GUI agent.
Multiple consulting service options are available for this service. Options range from minimal proof-of-concept (PoC) to full deployment across the entire enterprise.
attackers finding vulnerabilities to exploit. One of the most fundamental and important cyberdefenses is Vulnerability Management. PowerSC provides Trusted Network Connect and Patch Management (TNC) as a key solution for implementing your Vulnerability Management cyberdefense. TNC is the AIX/VIOS patching component of PowerSC that automates and reduces the effort needed to properly update AIX and VIOS. TNC provides updates for security interim fixes, service packs, and technology levels. The PowerSC Graphical User Interface (GUI) server provides browser-based centralized management of these security measures deployed on endpoints configured with the PowerSC GUI agent.
Multiple consulting service options are available for this service. Options range from minimal proof-of-concept (PoC) to full deployment across the entire enterprise.
Relevance to "Cost of a Data Breach Report 2023" 1
- Known unpatched vulnerabilities was the initial attack vector in 6% of all breaches, with an average cost of USD 4.17 million. 1
Relevance to Zero Trust
- Tech writer, Ashley Gwilliam, says that one of the seven simple Zero Trust Action Steps for SMEs to take is to “prioritize patch management” 2
- “IT admins must continuously monitor your devices, apps, and systems to identify and address security vulnerabilities. This is why patch management is an integral component of Zero Trust.” 2
Technical Details
- Point and click management provided by the PowerSC Graphical User Interface
- When a new interim fix or service pack is published by IBM, it is automatically downloaded to the patch repository
- TNC provides flexible and granular options for defining patch policies for environments with complex patch requirements
- Patch recommendations made upon the actual file sets installed on AIX or VIOS
- Extensive installation support, including open source packages in rpm & installp format
- Light-weight component architecture that provides excellent performance
- Automatic updating of patch repository that includes the updating of interim fixes with superseding versions
- Flexible command-line functions that facilitate automation
- TNC supports alt_disk updates for interim fixes, service packs, and technology levels
Common Use Cases
- An organization that would like a deep introduction to TNC
- An organization that would like to implement a patching solution that can be used for patch automation
- An organization that would like to implement a solution that quickly deploys AIX Service Packs and AIX Technology levels
- An organization that would like to adopt a granular and flexible patching solution for verifying that AIX and VIOS endpoints are properly patched
- An AIX Administrative team that would like to delegate simple patch management tasks to non-TNC administrators by using the point-and-click functionality of the PowerSC Graphical User Interface server
- An organization that would like to automate TNC using KSH, REST API, or Ansible
Engagement Process
- Consultant arranges prep call to discuss requirements, scheduling, and agenda
- Consultant works with client to install and configure TNC in client environment
- Consultant provides advice on best practice implementation
- Consultant works with client to verify the most important TNC functions are working in the client environment
- Consultant provides presentations to facilitate knowledge transfer
Deliverables
- Presentation Slides – an electronic copy of all presentation slides displayed during the engagement
- Configuration documents – an electronic copy of any configuration documents used during the engagement
References
- Ponemon Institute – Cost of a Data Breach Report 2023. (July 2023)
- Ashley Gwilliam – 7 Simple Zero Trust Action Steps for SMEs. (May2023)
For questions, please contact AIX/Linux Security consultant, Stephen Dominguez, at email
[{"Type":"MASTER","Line of Business":{"code":"LOB57","label":"Power"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSB2BD2","label":"IBM PowerSC"},"ARM Category":[],"Platform":[{"code":"PF002","label":"AIX"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
10 July 2024
UID
ibm16591773