www.qualys.

com
Patch Management
Streamline and accelerate vulnerability remediation
for all your IT assets

Qualys Patch Management (PM) is a cloud service for IT and

security teams to help quickly and efficiently remediate
vulnerabilities and automatically patch systems – regardless of
device location or operating system.

The solution provides workflow

automation, unique prioritization
capabilities, and accurate mapping of
vulnerabilities detected to required
patches and configuration changes. As an
enterprise-grade patching solution,
Qualys PM can patch Windows OS, Linux
OS, macOS, and a large catalog of
third-party applications.

Use Qualys PM to automatically reduce

your attack surface and free up IT and
cybersecurity resources to focus on more
strategic areas. It’s time to upgrade your
current patch solution.
 Key Features

A single solution to patch operating Cloud-based solution that is easy to

systems and third-party applications deploy and use
Qualys Patch Management can be used to patch and apply No need to install software on-premises or configure open ports
post-patch configuration changes to operating systems and and VPNs. Any on-premises workstation and server, or
third-party applications from a large variety of vendors, all from work-from-home device with the Qualys Cloud Agent installed,
a central dashboard. This capability means you don’t have to can be immediately scanned for missing patches and patched
manage patches in silos via multiple vendor-specific consoles. automatically. Anywhere you can put the Qualys Cloud Agent,
The solution manages reboots, honors maintenance windows, you can run Qualys Patch Management. When Qualys Patch
and ensures controlled deployment to servers and workstations Management is used with the Qualys Cloud Agent Gateway
to keep your enterprise IT and network environment secure Service, you can significantly optimize bandwidth usage by
and robust. caching patches locally on your network.

Automated correlation of vulnerabilities Remote remediation for corporate and

and patches personal devices
Qualys Patch Management lets you automatically correlate With remote work now the norm, many organizations struggle to
vulnerabilities identified by Qualys VMDR with patches and deliver patches to corporate and personal devices when users are
required configuration changes to decrease MTTR. The solution working from home or otherwise infrequently connected to the
efficiently maps vulnerabilities to patches and required network. Qualys Patch Management allows the patch team to
configuration changes. It also provides ready-to-deploy patch jobs automatically deliver patches, apply configuration changes, and
that can be scheduled and deployed automatically. Qualys Patch even install/uninstall software via the cloud to these remote users
Management is the only patch solution to enable Cybersecurity while avoiding the use of limited VPN bandwidth.
and IT teams to define a single shared priority list of applications
to patch regularly, based on historical per-application
vulnerability data from VMDR. This fosters increased productivity Unify discovery, prioritization, and
and cooperation between these two teams.
remediation in one platform
Qualys Patch Management leverages the Qualys Cloud Platform
Zero-Touch Patching and Cloud Agents to help IT and security teams quickly and
efficiently remediate vulnerabilities and patch systems. The
Qualys Patch Management gives the flexibility to automate unified platform also includes services for asset inventory
patching based on prioritized vulnerability data from Qualys (including EOL/EOS data), vulnerability management, threat
VMDR. For example, this helps enterprises address the most prioritization and response. These cloud services are all integrated
critical threats like ransomware first. Teams can automatically and share the same data, console, and single cloud agent.
apply routine patches where the risk of creating system instability
is low, to reduce mean-time-to-remediation and free up critical IT
and cybersecurity resources to focus on more strategic tasks.
Complements your existing Patch
Zero-touch patching helps to automatically reduce the enterprise
attack surface. Zero-touch also helps Cybersecurity and IT teams
Management investments
to meet SLAs and reduces manual remediation efforts and costs
Qualys Patch Management can complement the patch
more easily.
management tools your IT team already has, such as Microsoft
System Center Configuration Manager (SCCM), should you choose
to continue using it.

One Platform | One Agent | One Data Model

As Patch Management leverages the same agent as VMDR, it can be turned on
via simple one-click deployment, driving rapid time to value and total cost of
ownership (TCO) benefits.
 Benefits

FOR REMEDIATION / IT TEAMS FOR VM / CYBERSECURITY TEAMS

Reduce patching time for Fix more vulnerabilities faster

a happier Cybersecurity team
• Accurately map prioritized vulnerabilities to
• Automate patching where it makes sense patches and configuration changes required for
remediation
• Patch the right products and vulnerabilities at
the right time on the right devices • Simplify the integration between VM and IT
assets to automate patch deployment based on
• Create transparency for IT and
different risk factors like vulnerability severity,
Cybersecurity teams
ransomware, etc.

• Eliminate time researching if remediation

Close all your remediation gaps requires applying both a configuration change
and a patch – Qualys PM automatically does
• One unified solution to deploy patches and
this for you
make configuration changes required by the
Cybersecurity team to fix a vulnerability and
uninstall or upgrade EOL/EOS software Quickly respond to zero-day
• Largest out-of-the-box support for third-party threats
applications, with no need to spend time
• The same platform used to detect zero-day
packaging new patches
threats is used to initiate applying the right
patches on the right devices
Less maintenance, more patching • Validate successful zero-day remediation by
monitoring patches deployed and as well as
• One agent for all patching and
vulnerabilities fixed – all from the same console
vulnerability scans

• Simple patch deployment to servers and

workstations Save costs while reducing your
• No need to maintain VPN or network $ attack surface
exceptions – patch any device in any location
• Detect, prioritize, and remediate vulnerabilities
• Cloud based, so easy-to-use access from with the same platform and same agent – no
anywhere with a browser need for multiple products

• Automated patch jobs target the right devices

for the right vulnerabilities and reduce your
attack surface more efficiently

• Focus on remediation of vulnerabilities, not

just patch management

“Qualys is uniquely positioned to leverage both

vulnerability and threat intelligence insights in its
patching solution. Cleverly, the Qualys approach of
taking patch remediation a step further with the
addition of zero-touch automation eliminates
non-caustic threats like always patching Chrome or Christopher
Kissel
iTunes. It is a welcome addition that helps companies
Research Director,
reduce their attack surface while also freeing up IT and Security Products, IDC
Security resources to focus on more strategic areas.”
 Results that Matter

60% faster remediation for Risk-focused Smart-Automation

critical vulnerabilities TruRisk accelerates MTTR and addresses
vulnerabilities causing the
greatest risk to the organization

Fully integrated into Qualys Better alignment across

VMDR, allowing customers to Cybersecurity and IT teams
map findings to actionable
remediation workflows

“Qualys Patch Management helps us quickly patch

remote systems based on vulnerability-driven priorities.
It has empowered our platform teams and improved
our patch governance efforts. We chose Qualys PM as it Surendra
is natively integrated into Qualys VMDR and allows Nemani
Head of Security
cross-platform remediation.” Engineering, Infosys

Request a full trial (unlimited-scope) at

qualys.com/trial
Qualys is easy to implement, easy to use, fully scalable –
and requires NO infrastructure or software to maintain.

v220831 ©2022 Qualys, Inc. All Rights Reserved.