• Overview
• Security Risk & Compliance
• QualysGuard Enterprise
• Core Features
• Unique Benefits
• The SaaS Advantage
• Integrations
• Pricing
• Customers & Awards
• QualysGuard Express
  • Core Features
  • Unique Benefits
  • The SaaS Advantage
  • Integrations
  • Pricing
  • Customers & Awards
• QualysGuard @Customer
  • Core Features
  • Unique Benefits
  • @Customer Architecture
  • Integrations
  • Pricing
  • Customers & Awards
• PCI Compliance
  • QualysGuard PCI
    • Core Features
    • Unique Benefits
    • How it Works
    • The SaaS Advantage
    • Pricing
    • Customers & Awards
• Partner Solutions

 

 

Globally Deployable, Scalable Security Risk and Compliance Management

QualysGuard Enterprise enables organizations to reduce risk and manage compliance processes by providing security risk and policy compliance management in one solution. QualysGuard Enterprise automates the process of vulnerability management and policy compliance across the enterprise, providing network discovery and mapping, asset prioritization, vulnerability assessment reporting and remediation tracking according to business risk. Policy compliance features allow security managers to audit, enforce and document compliance with internal security policies and external regulations.

QualysGuard Enterprise is ideal for large, distributed organizations with:

• Thousands of network devices residing on distributed networks
• Complex segmented and remote networks
• Numerous users requiring role-based access to vulnerability, compliance and remediation data
• Virtual teams requiring consolidated technical and executive-level security reporting

Core Features

Discover and prioritize all network assets

Rapidly identify, visualize and organize network assets (including all network devices and applications) into Business Units and Asset Groups.

Proactively identify and fix security vulnerabilities

Safely and accurately detect and eliminate the vulnerabilities that make network attacks possible.

Manage and reduce business risk

Mitigate risk by automating vulnerability identification and prioritizing remediation based on risk to business operations.

Ensure compliance with laws, regulations and corporate security policies

Document regulatory compliance via automated agent-less auditing, tamper resistant audit trails and the certainty that comes with third-party assessment.

Achieve compliance with Payment Card Industry (PCI) Data Security Standard

Achieve PCI compliance status with QualysGuard's testing and compliance application.

• More Features

Unique Benefits

Global Deployability

Easily performs scans on geographically distributed and segmented networks both at the perimeter and behind the firewall.

Lower and Predictable TCO

On demand SaaS technology offers significant economic advantages with no capital expenditures, extra human resources or infrastructure to deploy and manage.

Extremely Accurate and Up-to-Date

QualysGuard has the largest KnowledgeBase of vulnerability signatures in the industry (5,500+) and performs over 150 million IP audits per year with Six-Sigma accuracy rate. Since QualysGuard is centrally managed, vulnerability updates are made in real-time.

Highly Scalable

Rapidly deploy and expand using QualysGuard's distributed scanning and on demand architecture.

Strong Security Model

Protects in-transit and in-storage data using SSLv3 and AES encryption.

Technical Support, Product Training and Certification Workshops

Qualys offers 24x7x365 on demand technical support at no additional cost, and provides free product training options including: web-based customer training, technical training, certification workshops, and access to annual and regional user conferences and online training.

The SaaS Advantage

The concept is simple and attractive: Customers pay simply for using software, as opposed to owning the software itself. In other words, rather than buying a software license for an application and installing the software on individual machines, a business subscribes (via a monthly or yearly fee) to use the application hosted by the company that develops and sells the software.

Software as a Service (Saas) gives the buyer more flexibility to switch vendors and puts a stop to the continuous cycle of buying a software license, paying for a maintenance contract, and then having to go through time-consuming and expensive upgrades. SaaS eliminates these headaches, and enables businesses to achieve a lower and predictable total cost of ownership. Furthermore, since there are no capital expenditures, extra human resources or infrastructure (hardware and software) to deploy and manage, a SaaS solution is highly scalable, easily deployed, fully distributed and can be used anytime, anywhere on demand.

Another unique advantage to the SaaS model is that updates to the solution, including patches and vulnerability updates, are made in real time for all customers. As a result of these continuous improvements, QualysGuard scans are highly accurate and bugs are generally fixed within 48 hours.

As an added benefit to customers, SaaS solutions are especially secure and tamper proof, since support for operating and maintaining the solution falls squarely on the SaaS vendor. For example, Qualys encrypts all of its in-transit and in-storage data, and undergoes constant third-party security audits following standards such as the SAS70 Type II.

The bottom line, more and more organizations are making the shift to SaaS for one simple reason: it works and is cost effective.

• QualysGuard Architecture

Integrations

QualysGuard includes an extensible XML API for integration with third-party commercial and internal customer applications. QualysGuard's trusted, third-party vulnerability assessments provide a solid foundation for automated correlation and analysis. Robust integration capabilities benefit many types of organizations by improving the capabilities of existing solutions suchs as: SIEM, Patch Management, Help Desk, Risk Management, Network Admission Control, IDS/IPS, Network Patching, Network Behavior Analysis, Security Policy Management, Penetration Testing, and more.

• Integration Partners
• QualysGuard API User Guide
• QualysGuard API FAQs
• QualysGaurd API Sample Code
• QualysGuard for NAM API User Guide

Pricing

Two subscription models are available for QualysGuard Enterprise:

Annual Subscription — Permits unlimited assessments of a prescribed number of IP devices. Ideal for regular audits of network assets. Pricing is based on the number of IP addresses scanned.

Per Scan — Permits flexible use of QualysGuard in environments where periodic or limited scanning is preferred. Pricing is based on the number of scans required.

Pricing Includes:

• All QualysGuard Features
• QualysGuard Scanner Appliances
• Unlimited user & manager accounts
• QualysGuard PCI compliance testing and certification application
• 24x7x365 email/telephone customer & technical support
• Weekly, Web-based customer training & regional certification workshops
• Free attendance to all Qualys user conferences and seminars

Contact sales for an immediate price quote.

   

Customers & Awards

Performing over 150 million IP audits per year, QualysGuard is the widest deployed security on demand solution in the world. Qualys is utilized by thousands of large and small organizations around the world.

• More customers
• Customer success stories
• Customer testimonials

QualysGuard is overwhelmingly recognized as the leader in its space. QualysGuard has won awards ranging from Best Vulnerability Management Solution, Best Security Product, Best Security Company, Best Network Protection Service and much more.

• See award details

© 1999 - 2008 Qualys, Inc. All rights reserved.