Microsoft program: 'You patch, we pay'
Under a new program, Microsoft is paying for security assessments of its customers’ networks to help improve policies in areas such as software patch management and assuage fears about the security risks posed by Microsoft products. The Microsoft Patch Assurance Security Service was started in late 2003. As part of the program, Microsoft is offering free security audits to all of its enterprise customers and paying for the services of third party security consultants, including Internet Security Systems Inc., to do the audits, according to interviews with those involved in the program. Full Story