This disclosure provides for patch monitoring and analysis, such as in an industrial process control and automation system. A method includes discovering (405) at least one connected device (130, 132, 134) by a risk manager system (154), including a software module (310) for the connected device and installed patch information (315) for the software module. The method includes identifying (410) current patch information (320) for the software module (310) by the risk manager system (154). The method includes populating (415) a patch definition file (210) according to the connected device, the software module (310), the installed patch information (315), the current patch information (320), by the risk manager system (154). The method includes analyzing (420) the patch definition file (210). The method includes producing (405) an output (300) based on the analysis by the risk manager system (154), the output (300) including the software module (310), the installed patch information (315), the current patch information (320), and the status (325) of the software module with respect to the installed patch information.
展开▼
