Continuous patch compliance visibility and enforcement

There are many compelling reasons to implement a comprehensive patch management process, to mention just a few:

  • known vulnerabilities of un-patched systems are targets for viruses and malicious code.
  • un-patched systems are in breach of new and increased governance such as Sarbanes-Oxley.
  • there are also threats brought through modern working practices, remote workers, interconnected sites.

A successful patch management solution is not just about the software technology used to deploy patches,  it is also about having the right people and processes in place to make a solution work.  BigFix patch management software not only provides the technology to deploy patches but also reduces the burden on the people supporting the patch management process.

IEM patches

The IBM BigFix® patch management solution follows a six step process: 

    1. IBM research software vendor patch information and provide it in the form of a policy content stream to BigFix Enterprise Servers.
    2. BigFix agents determine if the patch is required on their endpoint and inform the BigFix server.
    3. Operators can review, prioritise, schedule and deploy patches.
    4. The agent confirms that a patch has been successfully deployed.
    5. BigFix agents continually monitor an endpoint to ensure they are patch compliant.
    6. Real time reporting allows you to audit and assess the patch compliance across your enterprise.

How much of your Patch Management Process can be automated?

Most companies that have implemented an effective Patch Management solution follow a similar process, but the cost of delivery varies widely between companies.  The key to this variation is in the automation of the solution, the greater the automation the lower  the costs.  Using the BigFix Patch management solution as an example let’s see how BigFix could help you deliver an automated patching process that is simpler faster and cheaper than your existing solution.


It can be seen from the diagram that BigFix provides efficiencies through automation of the patching process.  BigFix researches software vendor patches, discovers where they are required, validates the implementation and monitors the clients for patch compliance. Leaving patch teams only to decide if a patch is required and if so create a deployment schedule that fits in with your change management process. 


Patch management is an essential part of every day IT, and an intelligent software toolset can compliment and reduce the burden on the people and processes that make up a patch management solution.  Adoption of the automated BigFix Patch management solution will provide a dramatic reduction in  patch cycle times, reduce staff workloads and increase the effectiveness of your patching process.



Twitter Feed

OrbData Open Banking. Whats Your Risk? Orb Data, #IBM and leading Fraud experts discuss how to address some of the challeng…
OrbData RT @LynseyBerwick: The latest edition of #Manufactology is out now! 🗞️Bringing you our #ukmfg perspectives in a…


100 Longwater Avenue, Green Park, Reading, RG2 6GP, U.K.
+44 (0) 118 945 0130
This email address is being protected from spambots. You need JavaScript enabled to view it.

markerFind on Google Maps

About Us

Orb Data brings together People, Process and Technology to deliver the cornerstone of business success: the management of IT infrastructure. At our heart are our people. We have unrivalled experience, helping us to achieve an enviable reputation for excellence in project delivery. Because we’re independent, we identify actual issues and help organisations resolve them –from spec to deployment, and beyond –providing the right solution in terms of best of breed technology and support. We offer a refreshingly simple approach to the way we conduct business. We take pride in our abilities to provide first class solutions to business problems, and to conduct working relationships with honesty and integrity.

Follow Us On: