QUALYSGUARD - FEATURES
Scanning
|
Comprehensive vulnerability KnowledgeBase that incorporates 5,500+ unique checks — the largest vulnerability database in the industry. |
|
|
Network mapping rapidly detects and identifies servers, desktops, routers, wireless access points and other networked devices. |
|
|
Inference-based scanning engine. |
|
|
Authenticated or unauthenticated scanning capabilities. |
|
|
Internal and external scanning provides a 360-degree view of network vulnerabilities. |
|
|
Scans are configurable for optimum performance and minimum network load. |
|
|
Customization of scans to scan for specific ports/services and specific vulnerabilities. |
|
|
Schedule and automate network discovery and vulnerability scan tasks on a daily, weekly or monthly basis. |
|
|
Automated daily updates to the QualysGuard vulnerability KnowledgeBase. |
Reporting
|
|
Easy access to concise, auto-generated reports. |
|
|
Executive Dashboard provides real-time illustration of risk. |
|
|
Detailed reports with verified remediation actions for technicians. |
|
|
SANS Top 20 Report provides industry baseline. |
|
|
Automated MasterCard SDP / Visa CISP Compliance Reporting. |
|
|
Top 10 reports of the top ten most prevalent vulnerabilities (both internal and external). |
|
|
Network topology visualization of all discovered hosts. |
|
|
CVE-linked and Bugtraq-referenced vulnerability checks with detailed remediation instructions. |
|
|
Customizable reports for flexible, on demand reporting by business units for executives and managers. |
|
|
Automated trending and differential reporting. |
|
|
Export reports to HTML, MHT, PDF, CSV and XML formats. |
Remediation
|
|
Automatically generate and verify trouble tickets concerning network vulnerabilities. |
|
|
Ticket trending and reports by owner, group and vulnerability to measure network threat level. |
|
|
Policy-based remediation workflow management with automatic trouble ticket creation/assignment. |
|
|
Automated remediation ticket generation and verification. |
|
|
Out-of-the-box integration with patch management and software distribution solutions (e.g. Citadel, PatchLink). |
Policy Compliance
|
|
Trusted, third-party network auditing and reporting meets the compliance needs of HIPAA, GLBA, SB 1386 and Sarbanes-Oxley and others. |
|
|
Automated Self-Service MasterCard SDP / Visa CISP compliance certification. |
Management
|
|
Automatic centralized reporting from distributed scans. |
|
|
Consolidated administration of both internal and external (perimeter) scanning. |
|
|
Flexible asset prioritization and asset grouping that gives users the ability to fix the highest priority vulnerabilities based on asset value and security policies. |
|
|
Daily signature updates and feature enhancements are completed automatically and transparently to the user. |
|
|
Hierarchical role-based user access controls allow delegation of responsibilities to reflect organizational structure. |
|
|
Authorized user access from any location. |
|
|
Scheduled scans and network discoveries. |
|
|
All functionality and management is available via a Web browser. |
|
|
Appliance-based; no software to install or maintain. |
Deployability/Scalability
|
|
Deploys in minutes with no software installation, rollout complications or maintenance upgrades |
|
|
Immediately accessible anytime, anywhere via a Web browser |
|
|
On demand technology allows users to scan globally with no additional infrastructure to buy or maintain |
Security
|
|
End-to-end encryption of vulnerability data. |
|
|
SAS/70 audited security architecture provides maximum data protection. |
|
|
Section 508 compliant. |
|
|
Optional two-factor authentication with RSA SecurID. |
|
|
Trusted, third-party certification of network security with tamper-resistant audit trails. |
|
|
Secure architecture protects scan results from tampering and manipulation. |
Interoperability
Support
|
|
24x7x365 email/telephone customer & technical support. |
|
|
Weekly, Web-based customer training. |
|
|
Technical training and certification workshops. |
