Software Update Management: Problems and Benefits
Patch management is an essential and complex process. Prompt and correctly managed updating optimizes security, regulatory compliance, availability, and functionality. Sporadic patch management can result in security vulnerabilities, compatibility issues, sluggish or erratic responsiveness, needless downtime, or loss of key functions. Patching involves more than periodic updates of operating systems and applications for servers and endpoints. Firmware updates can be a critical for peripherals like printers and scanners, network infrastructure appliances like routers and wireless access points, and IoT devices such as sensors and health monitors.
Progent's Patch Management programs can cover IoT devices like alarms and robotics
The patching process can pose a range of challenges that can differ for various environments. Resources that may require patching can be located on site, in the cloud, mobile, or in the homes of remote workers. Networks may include a mix of Microsoft Windows, Linux, Apple macOS, and Google operating systems and apps. Some updates can be implemented automatically and at scale using tools like Microsoft Configuration Manager, Intune, or Azure Update Management. Others must be implemented manually. Patching for vital resources must be timed to minimize business interruption. In some line-of-business environments, updates must be thoroughly validated prior to being applied to production.
Progent's support services for patch management offer organizations of all sizes a versatile and cost-effective alternative for assessing, testing, scheduling, implementing, and documenting updates to your dynamic information system. Besides optimizing the security and performance of your network, Progent's software and firmware update management programs free up time for your IT team to focus on crucial initiatives that return maximum business value to your network.
Patch management is a closed-loop process central to your risk management strategy
Progent's Software Update Management Activities
Progent provides regular and specialized service programs for patch management. These services allow you to offload some or all of your company's software update management tasks to a network services organization with more than 20 years of experience delivering network planning, deployment, and support to companies of all sizes worldwide. Progent works in close conjunction with your IT managers to define the critical services you need. Services available from Progent for software update include:
- Inventory network assets: This can cover key platforms such as Microsoft Exchange and SQL Server, web-facing physical and virtual servers, desktops and mobile endpoints, security devices such as firewalls, and network appliances such as routers and wireless access points.
- Select assets to be managed: Progent will confer with you to select which of your network resources you choose for ongoing software update management services. Progent provides a variety of regular programs that cover specific classes of items and Progent can also create custom programs to meet your particular needs.
- Deploy software update management tools: Progent is experienced with a wide range of software update tools and update tracking reporting systems. Examples of utilities include Azure Update Management for cloud-based resources, Microsoft Configuration Manager for on-prem assets, Microsoft Intune for mobile devices, IT Glue for IT asset documentation, plus a selection of advanced anti-virus platforms. Together, these tools allow you to automate and track patches for IT resources residing in cloud environments, on site, on the move, at district offices, and in the residences of at-home workers.
- Analyze patch currency and carry out risk analysis of missing updates: For the most part, systems with current patching are more secure and stable than those with sporadic patching. However, some patches are hurried into distribution and carry the potential to disrupt essential network operations by introducing compatibility issues, system shutdowns, or unfamiliar alterations to end-user experiences. Progent can assist you to determine which patches pose a risk to your organization's IT environment, or which updates should be assigned an urgent priority because they block an imminent security threat. Progent's background with update management support can help you to maintain a safe network without compromising business value.
- Pick a software update management service program: Progent's group of experts can help in devising and managing a patch management program that aligns with your business requirements. Progent offers standard and custom patch management service programs and can assist with programmatic as well as manual patching. Progent can manage mission-critical resources exclusively, all patchable assets, or anything in between.
- Patch testing: Even the world's largest networks such as Amazon AWS and Azure have experienced widespread outages caused by software updates that were not sufficiently tested prior to being rolled out to production environments. For businesses with no room for downtime, Progent can assist to create test systems that allow you to verify that new patches will not cause stability problems for your network.
- Rank and schedule patches: Progent can help you to decide which patches should be performed quickly and which can be safely delayed in order to reduce service interruption. Some key regulatory standards, like the Payment Card Industry Data Security Standard, require that critical cybersecurity updates be installed inside a defined time period.
- Document patch history and status: Progent's regular patch management programs include creating a centralized database for tracking the patch level of every subscribed asset. This streamlines the job of locating where software, firmware, or driver updates can be found and specifies patch release dates, related notes, and other important data required for a complete patch management system.
- Troubleshoot patch problems: Patches to some core entities like an operating system or application server can result in unexpected compatibility or stability problems, especially with legacy or home-grown software or older hardware. Progent has the breadth of knowledge to assist you to understand and mitigate issues that may appear as a result of deploying a patch.
Patch Management for Network Devices from Cisco and Other Vendors
Software updates are regularly released for network infrastructure appliances like firewalls, routers, switches, and wireless access points. These updates typically are designed to harden security, enhance functionality, or mitigate reliability problems. Managing updates for these network devices can pose a challenge, especially in multi-vendor networks and systems that have a combination of on-premises data centers, telecommuters, branch offices, and cloud-hosted resources. In addition to tracking and accessing the latest updates, IT managers must ensure that network appliances have sufficient disk space and that patches are transferred uncorrupted and work properly.
Progent has provided advanced assistance for Cisco networking appliances for over twenty years and also can provide expertise for products from other major vendors such as Palo Alto Networks, SonicWall, and WatchGuard. Progent's end-to-end services for patch management can assist your organization to consolidate your software update system to cover infrastructure appliances along with physical and virtual servers, desktop and mobile endpoints, applications, and IoT devices.
Progent offers software update management support for network appliances from Cisco and other vendors
Progent's Regular and Custom Software Update Management Services
Progent provides a variety of regular software update management plans that include scheduled backup, reporting, and documentation. Pricing is based on the type and number of devices enrolled. Additional support including building environments for initial software update validation are billed at normal rates. Custom plans are also offered and typically handle unusual devices and/or applications.
PROACTIVE Server Patch Management Services
On Premises or Private Cloud Server:
Azure Cloud-hosted Servers Patch Management:
- Compliance scan of all Windows and Linux servers
- Update compliance evaluation report for enrolled machines
- Scheduled Patching and Maintenance Maintenance
- License & Asset documentation and management
- Managed Anti-Virus - Current AV system
- Initiate server backup once scanned
- Additional Services Billed at time and material Rates
- IT Glue access management and asset documentation
On Premises or Virtual Workstation:
- ProSight Availability Tracking
- Operating System & Third Party Patch Management
- Scheduled Patching and Preventative Maintenance
- Managed Anti-Virus - current AV system
- Hosted Anti-Spam - Spam Hero
- Additional Services Invoiced at time and material Rates
- IT Glue access management and asset documentation
BASIC Server Patch Management
Managed Patch both Physical and Virtual Servers:
On Premises or Virtual Workstation Patch Management:
Server or Workstation Security Service-Level Agreement (SLA) - Add on service
Security Critical Patches - applied within 48 hours of Progent being notified - invoiced only when needed
PROACTIVE Network Device Patching
Internet Facing Hardware - Managed Devices (Security appliances, firewalls, routers):
Internal Network Hardware - Managed devices (wireless controllers, Wi-Fi access points, switches):
Network Device Security Service-Level Agreement - Add-on service
Security Critical Patches - applied within 48 hours of Progent being notified - invoiced only when needed
Original Patching Event Extra Costs:
First-time patching will be subject to an additional cost for each server or network device to provide for capture and recording of current update level and any other information required for properly carrying out the ongoing patching as described above. If multiple updates are necessary that require extra time for the initial updating, Progent will present any cost estimates above the standard patching cost.
Additional Services Offered:
Download Progent's Patch Management Services Datasheet
For a datasheet about the features of Progent Patch Management Services, select:
Progent Patch Management Services Datasheet. (PDF - 330 KB)
Talk to a Progent Expert about Patch Management Services
To find out additional information about Progent's software/firmware update management offerings, call Progent at 800-993-9400 or go to Contact Progent.