Deutsche Telekom Adopts IBM Concert for AI Automation

Deutsche Telekom, a telecommunications giant and IT service provider has selected IBM Concert, an AI-powered automation solution, to streamline and accelerate its IT operations. By embedding AI into patch management and security orchestration, it aims to address mounting operational complexity, improve cybersecurity responsiveness and scale IT resilience across its global footprint.

Patching remains a critical component of IT lifecycle management, essential for maintaining secure and stable digital infrastructure.

Yet, as enterprise systems grow in complexity, the process of implementing, coordinating and validating patches has become increasingly resource-intensive and prone to error.

To overcome the challenges, Deutsche Telekom turned to IBM for a solution capable of driving automation at scale. IBM Concert, developed by the IBM Software Development Organisation and tested internally as “Client Zero,” offers a transformative approach to patch management in modern hybrid cloud environments.

Meeting the demands of rapid digital expansion

With IDC forecasting the development of one billion new applications by 2028—fueled by AI innovations—the pressure on telcos to ensure uninterrupted, secure operations has intensified. Even minor software updates require cross-functional coordination between application owners, developers, security experts and operations teams.

IBM Concert offers Deutsche Telekom a unified platform that consolidates all relevant data streams and expertise into a single source of truth. By doing so, the platform enables contextual automation across vulnerability detection, patch deployment and security compliance reporting.

According to IBM, the automation reduces the average patching time per instance from 90 minutes to just 20 minutes. More significantly, the solution enables IT teams to reallocate their time towards strategic innovation, thereby improving business agility and operational resilience.

Achieving 10x gains in patch response times

The pilot implementation at Deutsche Telekom delivered compelling results. The “Median Time to Patch” for critical vulnerabilities was reduced tenfold, from 80 hours to just eight.

The improvement enhances security posture and boosts compliance, offering a decisive advantage in today’s threat landscape.

Dr Peter Leukert, Group CIO at Deutsche Telekom, states, “Secure operating systems form the foundation for all applications, databases and services that we offer our customers.

"When it comes to patching, the time factor has taken on a critical role in the AI era. Those who use available updates immediately and automatically can reduce security risks. We face this challenge together with our partner.

“We were looking for a standalone solution on the market that combines all the complex aspects of patch management and reliably automates everything.”

Building a future-proof IT operating model

The collaboration demonstrates a shared commitment to security and operational excellence. 

Steve Canepa, Global Managing Director at IBM, notes, “Security and trust are the cornerstones of success for all telecommunications companies.

"IBM Concert incorporates modern AI and automation technologies so that Deutsche Telekom can stay ahead of the dramatically escalating number and complexity of critical vulnerabilities across their Hybrid Cloud platform.”

Dinesh Nirmal, Senior Vice President of IBM Software, adds, “By intelligently orchestrating and automating security-critical processes, clients like Deutsche Telekom can not only respond faster to new threats but also use resources more efficiently using IBM Concert.

"In doing so, they are creating a solid foundation for a future-proof, scalable and highly secure IT operating model with the help of AI.”

Driving industry-wide innovation

As telecom operators increasingly pivot towards digital-first strategies, the role of AI-powered automation in IT infrastructure becomes indispensable.

Deutsche Telekom’s adoption of IBM Concert sets a benchmark for large-scale, security-sensitive environments seeking to modernise their patching frameworks while enhancing governance and compliance.

By embracing intelligent automation, it reinforces its position as a digitally mature, innovation-led operator ready to navigate the complexity of tomorrow’s digital demands.