Identify software vulnerabilities in mecm
I have been tasked to look at a clients mecm CB environment to identify and understand their general posture around software updates and general patching across their windows OS device environment.
So far I have reviewed the general health of the environment, reviewed their SUP and WSUS configuration but want to understand from the reporting whether devices are receiving their windows OS, office and third party patching are being deployed in a timely fashion.
Third party patching is handled by patch my pc and these software updates are synced into mecm through software updates.
Is there any guidance on where I should start? I think it would be the built in reports in mecm but unsure exactly which ones will give me the information I require.
Many thanks all