The Problem Overview

• Operating systems contain holes - public entry points to critical data and applications. With major software vendors now reporting more than 8,000 vulnerabilities each year, eradicating all potential threats is a daunting task. Many software vendors provide these patches free of charge. However, it is inefficient for organizations to require each employee to download patches directly from the software vendor because significant bandwidth and time is required for each download.
  
• Accordingly, many subscription-based Patch Management solutions download patches to a single server, which can be used to disseminate the patches within an organization. This centralized approach minimizes the bandwidth requirement and eliminates the need to involve each system user in the patch deployment process.

Our Patch Management solution requires no internal IT resources and is designed to fully automate any organization’s vulnerability detection and patching needs.Patch management in three easy steps:

1) Systems Scanned Daily

- Identify new and pre-existing applicable patches

- Identify patches to recall as needed

2) Patched released to sandbox

-Client designates servers & workstations that represent typical network systems

- Patches released one week prior to organization-wide release

3) All systems patched

- Most patches released monthly; emergency patches released immediately to all systems

- Cache systems established in client’s environment

The KRAA Solution

The KRAA Patch Management solution proactively downloads patches from all major software vendors and subsequently determines each patch’s applicability to systems in your network. Each system is scanned daily to ensure that your systems remain fully patched in a healthy environment at all times.

Our unparalleled patch categorization process also tests the accuracy of the limited classification provided by the patch software vendors, facilitating successful and harmless deployments because potential issues are identified and preempted prior to release. Additionally, prerequisites for deployment are identified and facilitated. These additional layers of system-specific information automatically address complex topics that would otherwise require significant IT resources. Patch Management is compliant with many regulations including HIPAA and FFIEC.