Resources

/

Podcasts

/

Product Talk

Just Patch It, Please: From Infinite Deferrals to Actionable Deadlines

Episode 10   Published October 22, 2024 14 minute watch

Product Talk

Product Talk, hosted by Peter Pflaster and Steph Rizzuto, takes you inside the Automox platform feature by feature. Recent topics include automated vulnerability remediation, custom roles, third-party patching, the Splashtop-powered Resolve, and integrations with Zendesk and VulnCheck. You'll hear the reasoning behind each release and where endpoint management is heading as it grows more autonomous.

Host

Steph Rizzuto

RECENT EPISODES

CISA's BOD 26-04 Directive Explained

[Nothing Weaponized, Everything Exposed]

[AI Hits the Hat Trick], Ep. 32

[Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31

The Math of Modern Attacks

View all episodes

Available wherever you get your podcasts

Youtube

Apple Podcasts

Spotify

Overcast

Pocket Casts

Amazon Music

Castro

Goodpods

Castbox

Podcast Addict

Player FM

Deezer

Summary

Security grew out of IT during the worm era of Code Red and Nimda, but patching and configuration stayed IT's job even though they are security imperatives. Automox CISO and SVP of Product Jason Kikta explains to host Steph Rizzuto why that split shapes the product: Automox is moving from a deferral-based patch model to a deadline-based one, where a patch must be done by a set date and time but the end user chooses when. It is also exposing patch and configuration proof of work through an API so IT can feed those results into external security and compliance tools. Kikta also says core controls like single sign-on, multi-factor authentication, and audit logs should be included, not sold as an upcharge.

Takeaways

  1. Automox is moving from a deferral-based system to a deadline-based one, so a patch must be done by a set date and time while the end user can complete it at any point before then. That mirrors how security and compliance hand down work: by a deadline, not as a fixed number of pauses.

  2. Automox is exposing patch and configuration proof of work through an API so IT can export results to outside tools for security and compliance reporting, not just internal IT reporting.

  3. Most patches are functionality patches, not security fixes. Kikta notes that even a major Mac OS update fixing a dozen CVEs is roughly 10% security and 90% functionality work.

  4. Worklets run evaluation code daily to check configuration state – password policy, security settings, disabled services, required agents – and run remediation code to bring any out-of-compliance endpoint back into compliance.

  5. Kikta says security imperatives should be free, with single sign-on, multi-factor authentication, and audit logs included rather than charged as a premium upcharge.

Topics

Patching & Endpoint Mgmt

See for yourself how policy-driven IT Automation saves time and eliminates risk.

Dive deeper into this topic

From Click to Fix: Bringing Automox Actions to...

Podcast

Automated Patching Solutions Compared: 2026...

Compare automated patching solutions for 2026. Find the best...

Black background with white text "AUTONOMOUS IT LIVE" in green circle and rectangle, and smaller text "FROM AUTOMOX" beneath.
AI, Humans, and the Hybrid Reality of IT in 2026

Blog

How To Build a Patch Compliance Dashboard That...

The power of IT automation is useless if you can’t prove to...