The Service
Policies & Initiatives
Security vulnerabilities are inherent in computing systems, network hardware and applications. These flaws allow the development and propagation of malicious software which can disrupt normal business operations in addition to placing Hampshire Fire and Rescue Service (HFRS) data at risk. In order to effectively mitigate this risk, software "patches" are made available to remove a given security vulnerability. Given the large number of computer workstations and servers that comprise the HFRS network, it is necessary to utilize a comprehensive patch management solution that can effectively distribute security patches automatically when they are made available. As well as the patch management solution HFRS deploys a Host Intrusion Prevention system that has the ability to evaluate individual computer workstations and servers for vulnerabilities and deploy protection.
Patches may then be automatically installed and, when necessary, the affected machine rebooted. Effective security is a team effort involving the participation and support of every HFRS employee and affiliate who is a user of the HFRS computer network.
This policy applies to employees, contractors, consultants, temporaries, and other workers at HFRS including all personnel affiliated with third parties. This policy applies to all equipment that is owned or leased by HFRS such as all electronic devices, servers, application software, computers, peripherals, routers, and switches.
Many computer operating systems such as Microsoft Windows, Linux, Mac OS and others include software application programs which may contain security flaws.
A compromised computer could threaten the integrity of the network and all equipment connected to it. Almost all operating systems and many software applications have periodic security patches released by the vendor that need to be applied. Patches which are security related or critical in nature shall be installed according to the Patch Management Procedures Policy.
Failure to properly configure new workstations or network hardware is a violation of this policy. Disabling, circumventing or tampering with patch management protections and/or software constitutes a violation of policy and may lead to disciplinary action.
