What is Vulnerability Management?

Vulnerability Management (VM) focuses on what makes the most impact on risk to business-critical assets. We deliver actionable risk insights by identifying exposures from exploitable vulnerabilities across your endpoints and prioritizing what should be addressed first to keep the attack surface shrinking.

 

Who is PDQ?

PDQ Connect is a cloud-based endpoint vulnerability and patch management platform that we have partnered with to deliver VM services. PDQ makes it easy to identify vulnerabilities across your Windows and macOS endpoints with no unnecessary complexity. The PDQ platform is MSP enabled, empowering partners to provide their clients with a proactive solution to manage and mitigate risk.

 

What are the benefits of using PDQ through SonicSentry?

This offering through SonicSentry provides our partners the combined intelligence of the PDQ platform and the SonicSentry organization. We provide the product, monitoring, and reporting at a reduced, consumption-based, month-to-month price point. SonicSentry provides highly praised support and training to make the partner as self-reliant as needed, while ensuring they have a direct contact when an issue comes up. Crucially, PDQ closes the loop on the vulnerability management lifecycle - identifying and fixing a problem happen in the same place.

 

Vulnerability Scanning

The PDQ agent scans enrolled Windows and macOS endpoints for known vulnerabilities as identified by the NIST CVE database. Once the agent is installed on a machine, it begins reporting on discovered vulnerabilities and outdated software automatically. PDQ validates whether a machine meets all conditions required for a vulnerability to actually be applicable, keeping findings accurate and actionable.

 

Patch Management

PDQ's patch management capability is what sets this offering apart. Once a vulnerability or outdated application is identified, patches can be deployed directly to the affected endpoint from within the PDQ portal - no separate patching tool required. This creates a true end-to-end workflow where identifying and fixing a problem happen in the same place.

This applies to:

• Outdated third-party applications and software
• OS-level vulnerabilities on supported platforms
• Any software packages reachable by the installed PDQ agent

 

Will this patch the vulnerabilities for me?

Yes. PDQ includes native patch management, which is the core differentiator from our previous offering. Once vulnerabilities or outdated software are identified, patches can be deployed directly to the affected endpoint through the PDQ portal. This closes the loop on the full vulnerability management lifecycle without requiring a separate tool.

 

Is a Proof of Concept (POC) available?

Yes, we provide a 14-day Proof of Concept to test all supported PDQ features. A POC is not required to take advantage of this offering.

 

Is there multi-tenancy?

Yes. Partners can choose from a single instance or multi-tenancy configuration.

• Single instance: All customers installed in the same instance, logically separated by tags and technical contexts. Provides a single installation parameter and login/dashboard for partners to view insights across every customer.
• Multi-tenancy: Customers are separated by individual instances using a single login. When a partner logs in, they are prompted to select which instance to access, with the ability to switch between customers via a dropdown. This provides granularity, data separation, and the option for customer-level login access.

 

Is there 2FA/MFA for the portal?

Yes. The PDQ portal supports multiple authentication and MFA options. Partners can link a Google or Microsoft account as their primary authentication method or password-less email login. For MFA, the portal supports an Authenticator App, Passkey, and SMS.

 

Is this agent based?

Yes. PDQ uses an agent-based deployment for Windows and macOS endpoints. The PDQ agent is what enables both vulnerability scanning and patch management, so keeping agents deployed and healthy across your endpoints is essential to getting the full value of the platform.

 

What are the responsibilities of the partner?

• Management of the implementation process
• Installation of the PDQ agent on endpoints
• Reviewing and applying patches identified in the Customer Remediation Report
• Providing Tier 1 support to direct end-user customers
• Contacting SonicSentry for any Tier 2 or Tier 3 issues the partner is unable to resolve
• Monitoring environment health and removing inactive devices

 

What are the deliverables from SonicSentry?

• Cloud architecture provisioning
• Training, support, and documentation as outlined per offering details
• Bi-weekly Customer Remediation Report provided on the 1st and 15th of the month

 

How do I contact support?

To contact SonicSentry support, visit the link below. When asked to select a product, choose Vulnerability Management, then PDQ Support.

SonicSentry Support Portal

Target Analysis & Response Time: 4 hours (Monday through Friday, 8:00am to 5:00pm EST)

Target Resolution Time: 2 business days (Monday through Friday, 8:00am to 5:00pm EST)

After hours and weekend support: None

 

How is this licensed?

Per installed agent.

 

How am I licensed and billed for this offering?

• This offering is consumption-based and month to month.
• Licenses are based on installed agents for that month.
• Accounts are audited on the last business day of the month.
• An invoice is sent on the first business day of the month based on audited numbers.
• Email mssaccounting@sonicwall.com for all billing questions or concerns.

 

POC Overview

• 14-day evaluation period
• A signed quote is required to start the POC
• Up to 100 endpoints
• Agent-based installs for Windows and macOS

 

Day 1 - Kickoff Call

• Ensure access to the PDQ portal
• Walk through the portal and console
• Install the PDQ agent on at least one machine
• Review any vulnerabilities discovered on enrolled endpoints
• Walk through how to deploy patches for identified vulnerabilities from within the PDQ portal

 

Day 14 - POC Converts to Live Offering

• Reports available within the portal