{“lastseen”:”2025-09-11T20:05:13″,”description”:”## Introduction\\n\\nRisk elimination is the goal of any vulnerability management program. It is typically achieved through a combination of patching and scripting solutions. SecOps teams usually prioritize vulnerabilities and forward them to IT teams for remediation. However, the real challenge lies in deciding what to fix first and mapping the right patches or identifying vendor-provided fixes when patches are not yet available or can\u2019t be deployed due to operational risk.\\n\\nThe Mean Time to Remediation (MTTR) depends heavily on the time spent prioritizing vulnerabilities, mapping the right patches, deploying them, or researching appropriate fixes when patches are unreliable or unavailable.\\n\\nThis is where our risk elimination agent, Agent Sara, powered by Agentic AI in Qualys Enterprise TruRisk Management (ETM), makes a difference. Agent Sara takes user questions, transforms them into enriched, prioritized insights, and drives the next logical action, reducing delays and uncertainty.\\n\\nInstead of manually creating queries (QQLs) for prioritization and action mapping, Agent Sara delivers clarity in seconds, resulting in a significant reduction in MTTR and faster remediation cycles.\\n\\n## How Agent Sara Works\\n\\n\\n\\nAgent Sara is designed to remediate or mitigate vulnerabilities using multiple risk elimination strategies, with the ultimate goal of reducing risk across the enterprise. You simply ask a question, and Sara interprets it, executes the relevant Vulnerability Management, Detection \\u0026 Response (VMDR) and TruRisk Eliminate queries, and delivers contextual, actionable insights.\\n\\n## Agent Sara\u2019s Role in Tuesday Patching\\n\\nLet\u2019s see Agent Sara in action with real-world SecOps and remediation use cases, demonstrating how it enables faster, smarter risk reduction.\\n\\nConsider the scenario of **Tuesday Patching** , when Microsoft releases security updates on the second Tuesday of each month (Patch Tuesday).\\n\\n**A SecOps analyst can ask:**\\n\\n\\u003e _\\” Which Microsoft vulnerabilities disclosed in the Sept 2025 Patch Tuesday have public exploits, show active weaponization, or are linked to a ransomware campaign?\\”_\\n\\nAgent Sara instantly analyzes the associated vulnerabilities and provides insights such as:\\n\\n * 56K overall vulnerabilities\\n * 18% have public exploits available\\n * 12% are linked to ransomware\\n\\n\\n\\nTruRisk from these vulnerabilities: 860\\n\\nOnce the prioritized vulnerabilities are sent to IT teams for remediation the **IT person can then ask** :\\n\\n\\u003e _\\” How many of these vulnerabilities are patchable?\u201d_\\n\\nThe question can further be narrowed down to a specific scope of assets. For example:\\n\\n\\u003e _\u201cSara, please share the list of patches I should deploy to remediate these vulnerabilities, prioritizing assets owned by the HR, Finance, and Business Apps Teams.\u201d_\\n\\nAgent Sara quickly identifies the patchable vulnerabilities and provides the relevant patches instantly. Once the patch information is clear, patch deployment can start.\\n\\n## When Patches Aren\u2019t Available, MTTR Rises\\n\\nOn Patch Tuesday, Microsoft releases security updates for many vulnerabilities, but not all of them have patches immediately available. These vulnerabilities contribute to the tail of risks that attackers are most likely to exploit.\\n\\nWhen a patch is not available, IT teams must invest time researching and developing custom fixes and validating them for safe deployment. This often leads to **increased MTTR and delayed patch SLAs****.**\\n\\nNow, imagine removing this overhead by asking a simple question:\\n\\n\\u003e _\\” Hey Sara, how many of these vulnerabilities have no patch available, and could you point me to the available fixes provided by TruRisk Eliminate?_\\n\\nSara instantly provides out-of-the-box permanent fixes for such vulnerabilities. Just think about the time saved and the significant reduction in MTTR this enables.\\n\\nYou can also go very specific by asking a question such as: \\n\\n\\n\\u003e _\\” Suggest a mitigation for CVE-2013-2900 WinVerifyTrust Signature Validation Vulnerability.\\”_\\n\\nThis is a legacy vulnerability with persistent risk that allows attackers to bypass digital signature validation, potentially leading to unauthorized code execution. Agent Sara lists the exact mitigation within seconds. This saves the time spent on researching, creating, and testing remediation scripts, as Qualys provides them out of the box and Agent Sara points directly to the right one.\\n\\n# Conclusion\\n\\nAgentic AI not only delivers accurate insights but also drives faster risk elimination with actionable remediation plans, significantly reducing MTTR and transforming how remediation teams operate.\\n\\n* * *\\n\\n**Find out more about Agentic AI on the Qualys Enterprise TruRisk Management platform. **\\n\\nFind Out More\\n\\n* * *”,”published”:”2025-09-11T18:40:19″,”modified”:”2025-09-11T18:40:19″,”type”:”qualysblog”,”title”:”Patch Tuesday Risk Elimination with Agent Sara”,”source”:””,”references”:””,”id”:”QUALYSBLOG:A15033424FD62D576BC360AC743FFEC5″,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[“CVE-2013-2900″],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:7.5,”severity”:”HIGH”,”vector”:”AV:N\/AC:L\/Au:N\/C:P\/I:P\/A:P”,”version”:”2.0″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/blog.qualys.com\/category\/product-tech”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2025-09-11T20:05:13″,”description”:”## Introduction\\n\\nRisk elimination is the goal of any vulnerability management program. It is typically achieved through a combination of patching and scripting solutions. SecOps teams…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,16,12,15,13,120,7,11,5],"class_list":["post-17178","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-cvss-75","tag-exploit","tag-high","tag-news","tag-qualysblog","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n