Let’s start out with some data from Absolute Software, in their State of Endpoint Resilience Report. The report focuses on the fact that endpoint complexity is itself a vulnerability, and has gotten worse, as driven by three factors.
- An increasing number of agents on devices – 10.2 on average, up from 9.8 last year
- Device OS migration, resulting in fragmentation and stagnant patching practices
- Fragile security controls, which are in varying rates of decay and collision.
Wonder how many applications are on a device – it’s 96, on average, and 60% of breaches are linked to a vulnerability with a patch available but not applied, despite a 34 percent increase year over year in weekly costs dedicated to patching.
Why do we care?
It’s no secret that I’m not excited by the core technologies that services most of the IT services space. That said, a core value tenet of what they do – -manage this complexity – is very relevant. Let’s ask the hard question – with this data being so well known and not new… is the problem the technologies being used or the people implementing them.
And the answer appears to be YES.
There’s still really a space for software vendors to be really good at solving this endpoint complexity problem, particularly around patching, and for those providers who really focus on being exceptional in this space.
Maybe it’s a stupid question, but rather than spending all this time building scripting and automation tools that don’t get used, why doesn’t someone just focus on making the patching problem so much easier?
Source: Absolute Software