Patch Management Essentials — transparent pricing
Self-run platforms like Automox and Patch My PC sell you a low per-device rate — then leave you to watch the dashboard, chase failures and prove compliance yourself. Brocent monitors and reports for you, so patch compliance is something you review monthly, not something you manage daily.
Three ways to scope a patch programme
Every tier includes a monthly patch-compliance report — patched / pending / failed counts and CVE exposure closed. No black-box dashboards.
Essential
Up to 25 endpointsOS + common third-party patching for lean teams.
One-time assessment
From US$400
Managed (recurring)
US$3.00 / endpoint / mo
- Windows / macOS OS-level patching
- Commonly-exploited third-party apps (browsers, Java, Adobe)
- Monthly patch-compliance report
- One-time: Patch Health Check baseline scan
- Managed: continuous deployment + monthly report
Professional
26–150 endpointsFull third-party catalogue with faster remediation SLAs.
One-time assessment
From US$700
Managed (recurring)
US$2.50 / endpoint / mo
- Everything in Essential
- Expanded third-party patch catalogue
- Prioritised patching by CVE severity
- Failed-patch remediation follow-up
- Managed: continuous deployment + monthly review
Enterprise
150+ endpoints · multi-siteCustom patch policies across multiple sites or entities.
One-time assessment
Custom
Managed (recurring)
From US$2.00 / endpoint / mo
- Everything in Professional
- Multi-site / multi-entity patch policies
- Compliance mapping: PCI-DSS, ISO 27001, MLPS 等保
- Dedicated security engineer + named contact
- Managed: continuous programme + monthly review
All prices in USD, indicative starting points, tax exclusive. Invoiced in HKD, SGD, CNY, JPY or EUR on request. Regional pricing (APAC / EU-UK / Middle East) available — final quote depends on scope, asset count and location.
How Brocent compares to the market
Self-run platforms charge per device and leave the monitoring, remediation and reporting to you. Brocent delivers a managed outcome — a report you can hand to an auditor.
| Vendor / tool | What you get | Typical price |
|---|---|---|
| Automox | Self-run platform, entry tier | US$1.00 / endpoint / mo |
| ManageEngine Patch Manager Plus | Self-run platform, tiered by device count | US$245–13,495 / yr |
| Patch My PC | Self-run platform, packaging only | US$2–5 / device / yr |
| Action1 | Self-run platform + mandatory support fee | US$4 / endpoint / mo + fee |
| Brocent Patch Management Essentials | Managed patching + monthly compliance report | From US$2.00 / endpoint / mo |
Third-party list prices as of July 2026; several vendors bundle an additional, separately-charged support fee on top of the headline rate. Brocent's price is genuinely all-in.
Patch Management Essentials — pricing questions
Do you patch third-party software, or just Windows updates?
Both. Every tier covers OS-level updates and commonly-exploited third-party software (browsers, Java, Adobe, etc.), with a monthly compliance report — most self-run tools only handle OS patching well.
How is the price calculated?
By endpoint count and tier — the Essential and Professional prices above are indicative starting points. Send us your device count and we'll return a fixed quote within one business day.
What if a patch fails to deploy?
Professional and Enterprise tiers include failed-patch remediation follow-up as part of the managed service — we chase failures down, not just log them.
Does this satisfy PCI-DSS, ISO 27001 or China MLPS (等保)?
The Enterprise tier maps patch compliance to PCI-DSS, ISO 27001 and China's MLPS (等保), so the monthly report supports your audit evidence.
Is this included in the Security Starter Bundle?
Yes — the Bundle includes Patch Management Essentials as standard. See the Bundle page for banded pricing by team size.
Get your patch programme scoped
Send us your endpoint count — we'll return a fixed-fee quote and a sample compliance report within one business day.