digiBandit/digiDocs
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
digiDocs/Policies/Patch_Management.md
Joey King 4ce0b1948d
Some checks failed
Regenerate Documentation Index / regenerate-index (push) Failing after 1s
Details
Rewrite: remove JumpCloud/Chocolatey, update to TRMM-based patching
2026-02-19 15:52:14 +00:00

60 lines
2.4 KiB
Markdown
Raw Blame History

---
title: Patch Management
description: How digiBandit keeps your systems secure and up-to-date through automated and managed patching.
category: policies
tags: [patch, policies]
permalink: go.dbits.ca/dd/patch-management
---
# Patch Management
Keeping software up-to-date is one of the most effective ways to prevent security breaches. digiBandit manages patching for all devices under our managed services so you don't have to think about it.
## What We Patch
- **Operating Systems** - Windows updates, macOS updates, and Linux packages
- **Third-Party Software** - Browsers, productivity tools, runtimes, and common business applications
- **Firmware** - Network equipment firmware updates during maintenance windows
## How It Works
### Automated Patching
Our monitoring platform (Tactical RMM) handles patch deployment across all managed devices:
- **Windows Updates** are applied on a managed schedule with automatic reboots during off-hours when required
- **Third-party applications** are updated automatically via our software management policies
- **Critical security patches** are prioritized and deployed as soon as possible after release
### Manual Patching
Some updates require manual intervention:
- **Line-of-business software** that requires testing before deployment
- **Major OS upgrades** that may affect workflows
- **Custom applications** with vendor-specific update procedures
For these, [submit a ticket](https://portal.dbits.ca) with the software details and we'll coordinate an update window.
## Patch Schedule
| Type | Frequency | Window |
|------|-----------|--------|
| Windows Updates | Weekly | Wednesday evenings |
| Third-Party Apps | Weekly | Automated |
| Critical Security | ASAP | Within 24 hours of release |
| Firmware | As needed | Scheduled maintenance window |
## Privilege Access Management
If you need to install or update software that requires administrator permissions, our privilege access management system lets you request elevation without needing full admin credentials. See [Privilege Access Management](../Security/Privilege_Access_Management_PAM.md) for details.
## What's Included
Patch management is included in Standard and Fully Managed device management tiers at no additional cost. See [Device Management](../Services/Device_Management.md) for tier details.
## Questions?
- **Phone:** (506) 404-0055
- **Email:** hey@dbits.ca
- **Portal:** [portal.dbits.ca](https://portal.dbits.ca)
Reference in a new issue View git blame Copy permalink