2019 IT Operations Survey Results: Automated Patch Management Not Widely Adopted

Patch Management Super Highway

Patch management and vulnerability management play a critical role in endpoint security. The process includes discovering assets in the network, scanning the assets and reporting on security vulnerabilities associated with software installed on those devices. The remediation of the security vulnerability involves patching the software on all of the systems where its installed. If patches are not applied to systems in a timely manner, your IT infrastructure can be compromised, and subject to attacks.  

In the 2019 Kaseya State of IT Operations Survey, nearly three-quarters of participants stated that they scan all servers and workstations for operating system (OS) patches, whereas about 47 percent said they scan all servers and workstations for third-party software patches regularly. 

Patch and Vulnerability Management Survey Data
Patch and Vulnerability Management Survey Data

 While most businesses are aware of the importance of patching, many lack the proper tools and automation necessary to carry out patching in a timely manner.  The sheer number of patches means that manual processes can’t keep up. In 2018, more than 22,000 software vulnerabilities were disclosed. A patch is made available at the time of disclosure for the vast majority of vulnerabilities. Typically, organizations strive to apply critical patches within 30 days of availability.

In the 2019 Kaseya State of IT Operations Survey results, about 65 percent of the participants responded that they apply critical OS patches within 30 days of release, about the same as the 68 percent that said they did so in 2018. This suggests the other 35 percent have either overlooked patches or it takes them longer than 30 days, leaving themselves exposed to cyberattacks.

Patching of third- party applications is even more of a concern. Only 42 percent of the survey participants monitor third-party software and apply critical patches for these within 30 days, similar to the 43 percent that said they did so in 2018.

Every software vendor has its own schedule of patch releases. Keeping up with patch releases across all of your vendors and deploying them on time can be a challenge for IT professionals. Therefore, automating the entire process of patch management can not only save time and effort of your IT team, but also ensure that every critical vulnerability is patched on time, keeping your systems secure. 

So, have the SMBs automated their patch management process? Less than half have done so, according to the survey.

Automated patch management has not yet become a standard operating procedure for the majority of small and midsize companies. Only about 42 percent automate or plan to automate patch management. 

Improving IT security is the topmost priority for most SMBs (see the recent blog: 3 Key Takeaways from the 2019 State of IT Operations Survey) and automating the patch management process could help them stay ahead of the onslaught of cyberattacks. With cyberattacks having become the norm these days, maintaining up to date patches is critical to the business.

Would you like to know more about the state of IT operations of SMBs? Download the complete copy of 2019 Kaseya State of IT Operations Report for SMBs now. 

Business man in suit using laptop

How to Calculate the ROI of Your IT Management Solution

Using the right IT management tool can be a game-changer for businesses. If you run a small to midsize businessRead More

Hour glass with sand next to a laptop

How Automating IT Processes Saves Time and Reduces Costs

Reducing IT costs has invariably been a major concern for IT departments in small and midsize businesses (SMBs). Even whileRead More

Sppoky Moon in Orange sky

MSPs Deliver Silver Bullet for SMBs Spooked by Cybercrime

October means Halloween, when ghouls and goblins lurk in the shadows, when the creaks and groans of the floorboards makeRead More

Guy wearing pumpkin mask holding a laptop

5 Scary Cyberattacks — How Much Did They Cost and What Can You Learn?

Cyberattacks can be as scary as horror movies. They continue to evolve, wreaking havoc in organizations and keep IT professionalsRead More

Connect IT - You're Invited! - Join us at MGM Grand Las Vegas - May 4th - 7th, 2020
Get the 2019 Kaseya State of IT Operations Report - Download Now

Archives

Categories