Bringing your servers up to date with the latest patches is part of the patch management cycle. The patch management cycle begins again by knowing when new security vulnerabilities are found and missing security updates become available.
Keeping your servers up to date with the latest security patches involves this entire cycle. You start the cycle again by:
Performing security assessments
Using security notification services
Use MBSA to regularly check for security vulnerabilities and to identify missing patches and updates. Schedule MBSA to run daily and analyze the results to take action as needed. For more information about automating MBSA, see "How To: Use MBSA" in the How To section of this guide.
Register to receive notifications of security bulletins released by Microsoft. Use the following services:
Microsoft Security Notification Service at http://register.microsoft.com/subscription/subscribeme.asp?ID=135 .
TechNet security Web site at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/current.asp