PatchLedger

PatchLedger is a lightweight systems compliance app that continuously answers a painful question: “Are we patched enough, and can we prove it?” It pulls patch and vulnerability signals from what you already use (Microsoft Intune/Windows Update for Business, Jamf, AWS SSM, Qualys/Tenable, etc.), normalizes them into a single “evidence timeline,” and generates auditor-ready reports mapped to common controls (SOC 2, ISO 27001, HIPAA). The product is intentionally narrow: it doesn’t try to be a full RMM, SIEM, or ticketing system. Instead, it focuses on patch SLAs, exception handling (with approvals and expiry), and clean proof-of-work. An AI assistant helps draft remediation plans and summarizes what changed week-over-week, but the core value is accurate, defensible data. If your patching is messy, this won’t magically fix it—but it will make gaps visible fast and reduce audit thrash.