{"id":6022,"date":"2022-08-03T16:16:56","date_gmt":"2022-08-03T20:16:56","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=6022"},"modified":"2022-08-05T08:28:51","modified_gmt":"2022-08-05T12:28:51","slug":"six-considerations-for-better-patch-management","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/","title":{"rendered":"Six Considerations for Better Patch Management"},"content":{"rendered":"<p style=\"text-align: justify;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-6023\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg\" alt=\"Patch Management\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management-300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management-768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management-540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management-162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify;\"><em><strong>As part of Solutions Review\u2019s Premium Content Series\u2014a collection of contributed columns written by industry experts in maturing software categories\u2014 Tom Bridge of <a href=\"https:\/\/jumpcloud.com\" target=\"_blank\" rel=\"noopener\">JumpCloud<\/a> proposes IT teams consider these six principles for better patch <\/strong><\/em><span style=\"color: #333333;\"><b><i>management.<\/i><\/b><\/span><\/p>\n<p style=\"text-align: justify;\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-6002\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/07\/SR-Premium-Content.gif\" alt=\"Premium Content\" width=\"105\" height=\"110\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/07\/SR-Premium-Content.gif 105w, https:\/\/solutionsreview.com\/identity-management\/files\/2022\/07\/SR-Premium-Content-77x81.gif 77w\" sizes=\"(max-width: 105px) 100vw, 105px\" \/>IT and system admins know well the challenge they face when dealing with patch management. Whether dealing with enterprises like Apple or Microsoft that offer a regular schedule of updates, organizations that have a less-regular approach to patches, or the urgent updates that require immediate installation, admins have to prioritize patching amidst a workforce that is largely unaware of its importance, or unconcerned by its execution.<\/p>\n<p style=\"text-align: justify;\">There\u2019s no question that patching is becoming more complex and difficult to manage. In part, this is due to the sheer proliferation of vulnerabilities. On average, the National Vulnerability Database logged more than 50 common vulnerability exploits (CVEs) daily last year. In addition to the explosion of vulnerabilities in the wild, patching is plagued by the issue of implementation. The threat is rising: one recent SAP and Onapsis study found that critical SAP vulnerabilities were weaponized within 72 hours of a patch release. And the challenge is real: Ponemon Institute research reveals that 65 percent of businesses report that patch management is difficult to prioritize, and 74 percent say they can\u2019t patch fast enough. Over half of IT admins report that they do not have adequate staff resources to meet the patching workload.<\/p>\n<p style=\"text-align: justify;\">Teams are dealing with an increasing number of patches and rising pressure to deploy within a time-consuming and complicated device environment. Many workforces now include a mix of macOS, Windows, and Linux devices. While this offers employees flexibility, this adds cycles to admins responsible for patching updates across different systems. For macOS environments, admins need to have acute visibility into user access, as the end-users are ultimately responsible for updating individual devices. In Windows, there\u2019s more flexibility, and admins have more control over when and how those patches are deployed. In Linux systems, patching is generally done by users, via the terminal, via a command such as <em>sudo apt-get update.<\/em> With permanent hybrid and remote workforces in mixed device environments, admins need to manage the patching process to secure users distributed around the country, across time zones, and across OSes, all while accounting for a growing number of applications.<\/p>\n<p style=\"text-align: justify;\">Unfortunately, with all of the various tasks and responsibilities that fall onto IT teams, patch management can fall out of focus. That\u2019s a mistake that leads to unnecessary risk. Here are a few considerations to ensure patch management has the attention it should at your organization.<\/p>\n<br \/>Widget not in any sidebars<br \/>\n<h2 style=\"text-align: justify;\"><strong>Six Considerations for Better Patch Management<\/strong><\/h2>\n<hr \/>\n<h3 style=\"text-align: justify;\"><strong>Maximize IT efficiency by Centralizing Device Management<\/strong><\/h3>\n<p style=\"text-align: justify;\">IT should consider the best use of resources &#8211; especially regarding how admins spend time. Instead of streamlining operations, organizations often have discrete processes and tools in place for each platform. Such varied focus makes it difficult to measure efficiency and efficacy. By consolidating and covering all platforms centrally, you can reduce the labor costs, ease admin frustrations, and more quickly surface where problem spots exist.<\/p>\n<h3 style=\"text-align: justify;\"><strong>Make Use of Staggered Patching<\/strong><\/h3>\n<p style=\"text-align: justify;\">Organizations should put a staggered approach to patch delivery in place. Staggering rollouts allows you to confirm a patch works within your organization\u2019s specifications by rolling out to a sample set of users based on specific application needs, then collecting their feedback. This allows you to have functional testers of patch effectiveness, compatibility, and stability. After this stage, an organization-wide rollout is possible.<\/p>\n<p style=\"text-align: justify;\">While there\u2019s no way to eliminate the effort and complication this involves, the smaller staggered rollout will have provided necessary analytics and data to focus the wider rollout on clear communication and anticipatory trouble-shooting.<\/p>\n<h3 style=\"text-align: justify;\"><strong>Separate by Machines<\/strong><\/h3>\n<p style=\"text-align: justify;\">Another option for optimizing the patching process is to separate out the machines for which you are responsible. Unattended devices used in shared environments such as point-of-sale machines or kiosks may require more effort to support. Stricter security, compliance requirements, and application compatibility often mean more complexity for these machines. By separating them as a separate group for deployment, you can implement targeted patching based on dynamic needs.<\/p>\n<h3 style=\"text-align: justify;\"><strong>Remain Flexible<\/strong><\/h3>\n<p style=\"text-align: justify;\">Developing a process for scheduling patches can offer order even amid chaotic, urgent updates. Routine patching with small, planned updates may just require a quick evaluation to determine compatibility before determining whether it can be pushed to users immediately or additional testing or limited rollout is required. For higher priority patches, built-in flexibility to account for reprioritizing updates based on urgency will help in more efficiently understanding downstream impacts. Have a system in place to adjust as priority level rises or falls, and communicate those changes and resulting best practices to users.<\/p>\n<h3 style=\"text-align: justify;\"><strong>Distribute and Seek Out Information<\/strong><\/h3>\n<p style=\"text-align: justify;\">After the testing stage or a full rollout, it\u2019s critical for admins to both communicate user directions and responsibilities &#8211; and also capture necessary data from the update. Admins need to have device monitoring in place that can determine how widely updates have been deployed and the impact of those updates. If necessary, review where communication weaknesses may have led to lower adoption and draft best practices that are easy for users to follow.<\/p>\n<h3 style=\"text-align: justify;\"><strong>Migrate to Modern Applications<\/strong><\/h3>\n<p style=\"text-align: justify;\">Knowing your application landscape can help with patching over time. Newer services may have patches pushed automatically through the browser or use more modern application delivery. Review your application history to see whether there\u2019s an opportunity to migrate to modern apps that require less support.<\/p>\n<hr \/>\n<h3 style=\"text-align: justify;\"><strong>Conclusion<\/strong><\/h3>\n<p style=\"text-align: justify;\">A smart and effective approach to patching means treating it as a process, not a task. With intention and visibility, patch management doesn\u2019t have to be a disparate, time-consuming process that risks operations. By focusing on creating a system for long-term support and success, IT teams of any size can prevent vulnerability exploits while delivering operational performance.<\/p>\n<br \/>Widget not in any sidebars<br \/>\n","protected":false},"excerpt":{"rendered":"<p>As part of Solutions Review\u2019s Premium Content Series\u2014a collection of contributed columns written by industry experts in maturing software categories\u2014 Tom Bridge of JumpCloud proposes IT teams consider these six principles for better patch management. IT and system admins know well the challenge they face when dealing with patch management. Whether dealing with enterprises like [&hellip;]<\/p>\n","protected":false},"author":236,"featured_media":6023,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5,1],"tags":[1943,1944,1242,1252,501,1236,1942,1824,66],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Six Considerations for Better Patch Management<\/title>\n<meta name=\"description\" content=\"As part of Solutions Review\u2019s Premium Content Series, Tom Bridge of JumpCloud proposes IT teams consider these six principles for better patch management.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Tom Bridge\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/\",\"name\":\"Six Considerations for Better Patch Management\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg\",\"datePublished\":\"2022-08-03T20:16:56+00:00\",\"dateModified\":\"2022-08-05T12:28:51+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/f06f37533b1327c6909491d8489fde04\"},\"description\":\"As part of Solutions Review\u2019s Premium Content Series, Tom Bridge of JumpCloud proposes IT teams consider these six principles for better patch management.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg\",\"width\":800,\"height\":400,\"caption\":\"Patch Management\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Six Considerations for Better Patch Management\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Identity and Access Management Solutions | Solutions Review\",\"description\":\"Evaluating Enterprise IAM Software, Identity Governance &amp; Access Control Tools.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/f06f37533b1327c6909491d8489fde04\",\"name\":\"Tom Bridge\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/9a9a9dc344663358b8a506219d6edf25?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/9a9a9dc344663358b8a506219d6edf25?s=96&d=mm&r=g\",\"caption\":\"Tom Bridge\"},\"description\":\"Tom Bridge is the Principal Product Manager for Apple Technologies at JumpCloud. He is also the producer of the Mac Admins Podcast and a co-chair and board member of the Mac Admins Foundation, whose mission is to foster connections, share and preserve knowledge, protect the community's independence, and maintain broad access to all community resources. Prior to joining JumpCloud, he was a partner at Technolutionary LLC, where he managed IT operations for over 15 years.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/tbridge\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Six Considerations for Better Patch Management","description":"As part of Solutions Review\u2019s Premium Content Series, Tom Bridge of JumpCloud proposes IT teams consider these six principles for better patch management.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/","twitter_misc":{"Written by":"Tom Bridge","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/","url":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/","name":"Six Considerations for Better Patch Management","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg","datePublished":"2022-08-03T20:16:56+00:00","dateModified":"2022-08-05T12:28:51+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/f06f37533b1327c6909491d8489fde04"},"description":"As part of Solutions Review\u2019s Premium Content Series, Tom Bridge of JumpCloud proposes IT teams consider these six principles for better patch management.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2022\/08\/Considerations-for-Better-Patch-Management.jpg","width":800,"height":400,"caption":"Patch Management"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/six-considerations-for-better-patch-management\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"Six Considerations for Better Patch Management"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Identity and Access Management Solutions | Solutions Review","description":"Evaluating Enterprise IAM Software, Identity Governance &amp; Access Control Tools.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/f06f37533b1327c6909491d8489fde04","name":"Tom Bridge","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/9a9a9dc344663358b8a506219d6edf25?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/9a9a9dc344663358b8a506219d6edf25?s=96&d=mm&r=g","caption":"Tom Bridge"},"description":"Tom Bridge is the Principal Product Manager for Apple Technologies at JumpCloud. He is also the producer of the Mac Admins Podcast and a co-chair and board member of the Mac Admins Foundation, whose mission is to foster connections, share and preserve knowledge, protect the community's independence, and maintain broad access to all community resources. Prior to joining JumpCloud, he was a partner at Technolutionary LLC, where he managed IT operations for over 15 years.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/tbridge\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/6022"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/236"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=6022"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/6022\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/6023"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=6022"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=6022"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=6022"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}