(imported topic written by ksonic91)
Hi
I am new to patch management. I wonder what’s the acceptable compliance % at your location are? And any industrial standard out there regarding the compliance %?
Let me know.
Thank you
(imported comment written by SystemAdmin)
We have had a Service Level Agreement (SLA) with our customer, a large multi-state utility company (23,000 seats), for the past 8 years using BigFix.
Each monthly patch cycle we have to meet the following compliance percentages:
90% Workstations
90% Servers
100% DMZ Servers
Critical Patch: 5 days for DMZ, 14 days for Server, 14 for Workstations
Any other severity: 10 days for DMZ, 21 days for Server, 21 Workstations
I have never missed a monthly SLA since I have been using BigFix (I have had a few 90.1%
) and I have successfully patched 9,998,826 individual Microsoft Security Patches to date. We have to turn in an operational report of all BigFix patching activity at the end of every month along with compliance reports for our SLA agreement.
Great product and support was wonderful before…the jury is still out with me regarding the IBM take over.
Good Luck!
Scott