Please note that this is a page from a previous version of Continuity Central and is no longer being updated.

To see the latest business continuity news, jobs and information click here.

Business continuity information

The business continuity problems of patching

GFI Software has released survey results that show that half of businesses questioned have suffered at least one business critical IT failure as a result of installing a bad software patch.

The research also reveals that a quarter of those surveyed suffer recurring IT failures and lost productivity resulting from software bugs and incompatibilities introduced by badly developed software updates.

The survey of 256 senior IT decision makers in the UK was conducted on behalf of GFI by independent market research company Opinion Matters.

Commitment to deploying critical updates quickly is clear, with 90 percent of those surveyed applying patches within the first two weeks after they are released. However, for many the process remains a manual one, with 45 percent not using a dedicated patch management solution to distribute and manage software updates. This lack of automation is a major contributing factor that explains why 72 percent of surveyed decision makers do not deploy within the all-important first 24 hours after a critical patch is released to the public.

Additional key findings:

  • 51 percent of those surveyed said their organizations did not have a rigid policy regarding the installation of critical software updates;
  • 25 percent of respondents have suffered multiple IT failures as a result of buggy patches or compatibility issues created by a software update;
  • The legal (43 percent) and healthcare (40 percent) sectors struggle the most with recurring IT problems caused by bad patches;
  • The personnel sector is the biggest user of dedicated patch management solutions, due to the lack of dedicated on-site IT support in most recruitment offices;
  • 29 percent of the survey group consider security to be the most important benefit of prompt software patching;
  • Improved productivity within the IT department, added security and compliance are the main drivers for investment in patch management solutions.
  • Small companies with nine users or less are the quickest to deploy patches, with 45 percent deploying within 24 hours. Slowest to deploy are companies of between 250 and 500 users, with 63 percent taking up to a week to deploy known patches. The legal and construction sectors are the most conservative when deploying patches, with 71 percent of each vertical taking up to a week to deploy a patch. HR businesses are the most proactive, with 50 percent deploying in the first 24 hours, closely followed by financial services with 46 percent deploying inside a day.
  • The research revealed a clear shift within the financial services sector, which following the implementation of stringent compliance regulations such as Sarbanes-Oxley and Basel II, has moved from being cautious regarding IT change to being more open to deploying updates and critical patches as soon as possible in order to reduce the risk of data loss, theft or reduced oversight over financial activities.


•Date: 22nd June 2011 • Region: UK/World •Type: Article • Topic: ICT continuity

Business Continuity Newsletter Sign up for Continuity Briefing, our weekly roundup of business continuity news. For news as it happens, subscribe to Continuity Central on Twitter.

How to advertise How to advertise on Continuity Central.

To submit news stories to Continuity Central, e-mail the editor.

Want an RSS newsfeed for your website? Click here