Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
A patch is software that updates a program to fix bugs, close security vulnerabilities, improve performance, or add features; key to vulnerability management.
Patch Definition: A patch is software that updates a program to fix bugs, close security vulnerabilities, improve performance, or add features; key to vulnerability management.
An update/fix for an IT asset. A patch is a piece of software designed to update a computer program or its supporting data to fix bugs, fix security vulnerabilities, improve performance, or add new features. Security patches are particularly important, as they address known vulnerabilities that could be exploited by attackers. Patch management is required by frameworks like ISO 27001, NIST SP 800-53, CIS Controls, and regulations like PCI DSS. Organizations implement patch management through inventory systems, vulnerability scanners, patch testing processes, automated deployment tools, and compliance monitoring. For example, a financial institution might implement a structured patch management program that identifies vulnerable systems through regular scanning, tests patches in a staging environment, deploys critical security patches within 72 hours following approval, and maintains compliance reporting for auditors. Related terms: Vulnerability management, Security updates, Hotfix, Service pack, Patch management, Windows Update, Vulnerability scanner, Change management.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →