What are the requirements to secure Windows Environment

I am working in a Windows 2003 AD environment which is utilizing a Cisco Router and Symantec Firewall.  If I am only using Office suite, TS services, Exchange services, Norton, Veritas Backup Exec, and closed unneccessary ports on the router and firewall, do I need to constantly execute the Windows critical security updates?
Who is Participating?
Lee W, MVPConnect With a Mentor Technology and Business Process AdvisorCommented:
Does any system EVER get connected to the internet?  If so, then YES, you need to do the updates.  It only takes one user to "accidentally" install an activeX control from a malicious web site that exploits a weakness in a product and then spreads throughout your network and costs you thousands or perhaps millions of dollars.  Remember SQL Slammer?  Once that got on a network, any machine runnind an unpatched MSDE install was vulnerable.

Setup a WSUS server and deploy patches through that... but don't be silly and think because you have a ship with a hull that has no leaks it's somehow unsinkable.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.