Software Update Management: Problems and Benefits
Patch management is a critical and complex process. Timely and correctly managed updating optimizes security, compliance, availability, and functionality. Sporadic software update management can result in security vulnerabilities, compatibility issues, slow or inconsistent responsiveness, excessive offline stretches, or loss of key features. Patching entails more than occasional updates of operating systems and apps for servers and endpoints. Firmware updates can be a vital for peripheral devices like printers and scanners, network infrastructure appliances like routers and Wi-Fi APs, and Internet-of-Things devices like sensors and health monitors.
Progent's Patch Management services can cover IoT devices like alarms and health monitors
The update task can present a number of challenges that vary for various environments. Resources that may require updating can be on-premises, in the cloud, on the road, or in the homes of remote workers. Environments may support a combination of Microsoft Windows, Linux, Apple macOS, and Google operating systems and apps. Some patches can be implemented automatically and at virtually any scale using tools like Configuration Manager, Intune, or Azure Automation Update. Others must be performed by hand. Patching for core resources must be timed to minimize business disruption. In certain mission-critical systems, patches must be carefully validated prior to being applied to production.
Progent's support services for software and firmware patch management offer businesses of any size a versatile and cost-effective solution for assessing, testing, scheduling, implementing, and tracking software and firmware updates to your ever-evolving IT system. In addition to optimizing the security and performance of your network, Progent's patch management offerings open up time for your IT staff to focus on crucial projects that deliver top business value to your information system.
Patch management is a closed-loop process critical to your risk management plan
Progent's Software Update Management Activities
Progent provides standard and custom service packages for patch management. These services permit you to offload part or all of your company's software update management tasks to an IT support firm with over two decades of experience delivering solution planning, deployment, and support to businesses of all sizes worldwide. Progent works closely with your IT managers to define the scope of the managed services you need. Programs offered by Progent for software update include:
- Inventory network assets: This can cover key platforms such as Exchange and SQL, web-facing servers, workstations and mobile endpoints, security devices like VPN controllers, and infrastructure appliances such as routers and Wi-Fi access points.
- Select resources to be managed: Progent will work with your IT team to identify which of your network resources you choose for ongoing patch management services. Progent provides a variety of standard service programs that cover specific classes of items and Progent can also create specialized service programs to accommodate your particular requirements.
- Deploy software update management tools: Progent is familiar with a wide range of software update platforms and update inventory reporting systems. Examples of tools include Azure Automation Update Management for cloud-based assets, System Center Configuration Manager for local resources, Intune for mobile devices, IT Glue for documentation, plus an arsenal of modern anti-virus platforms. Together, these products allow you to deploy and monitor patches for network resources located in cloud environments, on site, on the road, at district offices, and in the houses of telecommuters.
- Analyze patch status and carry out risk assessment of missing updates: For the most part, systems with up-to-date patching are more secure and stable than those with sporadic patching. Still, occasionally patches are hurried into production and carry the ability to disrupt vital network operations by causing compatibility issues, system instability, or confusing changes to end-user environments. Progent can help clients to determine which patches carry a risk to your organization's IT environment, or which patches should be given an urgent priority because they defend against a major security attack. Progent's background with update management services can help you to maintain a protected network without compromising productivity.
- Pick a patch management service program: Progent's team of consultants can assist in designing and managing a patch management program that fits your business needs. Progent can provide standard and specialized patch management service programs and can help with both automated as well as manual patching. Progent can manage business-critical assets exclusively, all updateable resources, or anything in between.
- Patch testing: Even the biggest networks including Amazon AWS and Microsoft Azure have had widespread outages that resulted from updates that were not sufficiently tested before being rolled out to live environments. For businesses with zero room for service disruption, Progent can help create test environments that permit you to make sure that new patches will not cause stability problems for your network.
- Rank and schedule updates: Progent can assist you to decide which patches should be performed immediately and which can be safely delayed in order to minimize business interruption. Certain key regulatory standards, like the PCI Data Security Standard, require that critical security updates be implemented within a specified time period.
- Document patch history and status: Progent's standard patch management programs include the creation of a centralized database for following the patch level of every subscribed resource. This simplifies the task of locating where patches can be downloaded and specifies release dates, release advisories, and additional important data needed for a complete patch management solution.
- Debug update problems: Updates to some key items like an OS or application server can cause unforeseen compatibility or reliability issues, especially with legacy or custom software or older devices. Progent has the scope of knowledge to assist you to identify and mitigate problems that may appear due to implementing a software update.
Patch Management for Network Devices from Cisco and Other Vendors
Software patches are regularly developed for network devices such as firewalls, routers, switches, and wireless access points. These updates typically are intended to improve cybersecurity, enhance features, or correct reliability issues. Managing patches for these network infrastructure appliances can be a challenge, especially in mixed-vendor environments and systems that include a combination of on-premises datacenters, at-home workers, regional offices, and cloud-based resources. In addition to tracking and acquiring updates, IT managers must make sure that infrastructure devices have enough free disk storage and that updates are transferred uncorrupted and operate properly.
Progent has delivered high-end help for Cisco networking appliances for more than two decades and also offers expertise for devices from other top network companies including Juniper, SonicWall, and WatchGuard. Progent's services for patch management can help your organization to consolidate your patching solution to cover infrastructure appliances along with servers, desktop and mobile endpoints, applications software, and Internet-of-Things devices.
Progent can provide software update management expertise for network appliances from Cisco and other leading vendors
Progent's Regular and Specialized Software Update Management Services
Progent has developed a variety of regular patch management packages that include backup services, reporting, and thorough documentation. Pricing is based on the type and number of entities covered. Additional support including building systems for pre-installation software update piloting are invoiced at time and material rates. Custom plans are also available and typically cover unique hardware and/or applications.
PROACTIVE Server Software Update Management
On Prem or Private Cloud-hosted Server:
Azure Cloud-hosted Servers Patch Management:
- Compliance scan of all Windows and Linux servers
- Update compliance evaluation results for enabled machines
- Scheduled Patching and Preventative Maintenance
- License & Asset documentation and management
- Managed Anti-Virus - Current AV system
- Begin server backup once complete
- Additional Support Billed at T&M Rates
- IT Glue access control and resources documentation
On Premises or Virtual Workstation:
- ProSight Availability Tracking
- OS & 3rd Party Patch Management
- Scheduled Patching and Maintenance Maintenance
- Managed Anti-Virus - current AV system
- Hosted Anti-Spam - Spam Hero
- Additional Support Invoiced at time and material Rates
- IT Glue access management and asset documentation
BASIC Server Patch Management
Managed Patch both Physical and Virtual Servers:
On Site or Virtual Workstation Patch Management:
Server or Workstation Security SLA - Add on service
Security Critical Patches - applied within 48 hours of Progent being notified - invoiced only when needed
PROACTIVE Network Device Patching
Internet Facing Hardware - Managed Devices (Security appliances, firewalls, routers):
Internal Network Hardware - Managed devices (wireless controllers, Wi-Fi access points, switches):
Network Device Security SLA - Add-on service
Security Critical Patches - applied within 48 hours of Progent being notified - invoiced only when needed
Initial Patching Process Extra Costs:
Initial patching will have an extra cost per server or network device to provide for capture and documentation of current patch level as well as any other information needed for properly providing the ongoing patching as described previously. If many updates are necessary that demand extra time for the first-time updating, Progent will present any estimates beyond the normal patching cost.
Other Services Offered:
Download the Software Update Managed Services Datasheet
To download a datasheet about the features and benefits of Progent Software Update Managed Services, click:
Progent Patch Management Services Datasheet. (PDF - 330 KB)
Talk to Progent about Patch Management Services
To learn additional information about Progent's software/firmware update management offerings, call Progent at 800-993-9400 or see Contact Progent.