This year I’ve been thinking about fundamentals a lot. That includes patch management, and in preparing a presentation on the topic I pondered the question:
“What is the best patch management tool?”
I thought back to my favorite patch and systems management tools from past jobs when I ran mixed (but mostly Windows) networks for small businesses. That reminded me of a lesson about tools I learned many years ago.
What is the best [insert category here]? I believe there are two answers:
The one you have
The one you know
Note that these may not necessarily True, but in the real world “truth” can be pretty fluid. There certainly may be better [whatever category] tools than the ones you have now, but you can’t make a difference with them tomorrow- and “a little better tomorrow” is our goal. The tools available to you, and which you know how to use, those are the ones you can make gains with immediately. If you really are pushing the limits of the tools you have available, consider what works and what doesn’t work with the old tools- then look for better tools and processes, making sure you don’t lose anything you currently rely on in the transition (or at least know what trade-offs you are making).
Get the most out of what you have and you’ll make progress and be better prepared for when the elusive Budget Fairy appears with the Magic Resources Dust- you’ll be better able to make the case for new tools if you can show that you are pushing the existing stuff to its limits; as we all know, the Budget Fairy is hard to find, and harder to get money from.
The bottom line is that we can’t let our existing tools artificially limit us. I’ve heard variations on “I can’t do X without a new tool” since my days as a mechanic- and while it is sometimes true, it is sometimes just an excuse for doing nothing.