Patch Management and Mitigation Overview
Learn about the Qualys Patch Management (PM) and Mitigation (MTG) applications before using them.
 |
|
 |
Overview - Patch Management
Patch Management provides a comprehensive solution for managing vulnerabilities in your system and deploying patches to secure these vulnerabilities and keep your assets up-to-date. The Qualys Vulnerability Management, Detection, and Response (VMDR) module enables you to discover, assess, prioritize, and identify patches for critical vulnerabilities.
Patch Management helps you save time and effort by automating patch management on your Windows, Linux, and Mac assets using a unified patch management application.
You can refer to the use cases-based Explore PM Product Tours.
How does Patch Management Work?
- You get instant visibility on patches available for your assets. Also, you can understand whether these patches have already been installed on your assets.
- You can automatically deploy new patches as and when they are available.
- You can install Microsoft and Non-Microsoft patches for Windows by using a single patch management application. You can also deploy patch jobs on Linux and Mac assets.
- You can create jobs to automate patch installation for Windows, Linux, and Mac assets. A single job deployment can have either Windows, Linux, or Mac assets. A job that combines Windows, Linux, or Mac assets is not supported.
- The Windows and Mac Cloud Agent downloads the required patches from external sources. However, patches that require authentication cannot be downloaded by the agent. You can manually download and install such patches on the assets. Qualys Patch Management will then identify these patches as installed.
We do not support scanning assets running Windows evaluation versions. Once upgraded to the full version of Windows, these assets are scanned for missing and installed patches.
Patch Management Overview Video
Introduction to Qualys Patch Management
Overview - Mitigation
Despite Patch Management being the core capability in vulnerability management, the Mitigation (MTG) application plays a key role, as patching might not always be feasible considering the required downtime, or the patch might not be available in the case of zero-day vulnerabilities.
Using the MTG application, you can mitigate vulnerabilities on Windows and Linux assets using actions and scripts, creating the mitigation jobs.
The security and IT teams can use Mitigation capability to enhance cybersecurity resilience by addressing critical vulnerabilities without deploying a patch. This enables organizations to significantly lower their vulnerability exposure and streamline their response to cyber threats.
Related Links |