undefined | Better HN

0 pointsflarg6y ago0 comments

In many cases unpatched systems automatically fail GxP by not being patched but pharmaceutical organisations still run operations like it's the 90s and they just don't acknowledge the problems. Have worked in pharma IT for 10 years.

0 comments

mc326y ago

I think the problem is that their vendors’ applications run like it's the ‘90s. Often the orgs will be waiting on a vendor’s patch to be released which has been qualified for the sec patch. This requirement is kind of dubious but if you patch before they release their patch you’re on your own.

flargOP6y ago

You'd think so but most vendor security patches appear very quickly even for 90s style systems, the problem is almost always the customer's own processes. All vendors in the pharma business space maintain a dedicated support and patch team for all deployed and commercially supported products and or course charge customers for the privilege.

j / k navigate · click thread line to collapse

0 pointsflarg6y ago0 comments

0 comments

mc326y ago

flargOP6y ago

j / k navigate · click thread line to collapse