• Overview
• Security Risk & Compliance
• QualysGuard Enterprise
  • Core Features
  • Unique Benefits
  • The SaaS Advantage
  • Integrations
  • Pricing
  • Customers & Awards
• QualysGuard Express
• Core Features
• Unique Benefits
• The SaaS Advantage
• Integrations
• Pricing
• Customers & Awards
• QualysGuard @Customer
  • Core Features
  • Unique Benefits
  • @Customer Architecture
  • Integrations
  • Pricing
  • Customers & Awards
• PCI Compliance
  • QualysGuard PCI
    • Core Features
    • Unique Benefits
    • How it Works
    • The SaaS Advantage
    • Pricing
    • Customers & Awards
• Partner Solutions

 

 

The Easiest Way to Eliminate Security Vulnerabilities and Achieve Compliance

QualysGuard Express is an on demand solution, fully automated to identify security vulnerabilities, track remediation and ensure regulatory compliance. Driven by the most comprehensive vulnerability KnowledgeBase in the industry, QualysGuard delivers continuous protection against the latest worms and security threats without the substantial cost, resource and deployment issues associated with traditional software.

QualysGuard Express is ideal for small to medium-sized organizations with:

• Internet-facing systems and business systems
• Individual departments and business units within large enterprises
• A small number of Web, extranet and other DMZ servers

Core Features

Identify and catalog all assets across the network

Discover all network devices and software applications that reside within your infrastructure, and identify host details including operating system and open services.

Identify and fix security vulnerabilities

Safely detect and remediate vulnerabilities discovered, such as mis-configurations and missed patches.

Manage and reduce business risk

Reduce risk by automating vulnerability identification and prioritizing remediation based on mission critical systems and high-severity vulnerabilities.

Ensure compliance with laws, regulations and corporate security policies

Document regulatory compliance via automated agent-less auditing, tamper resistant audit trails and the certainty that comes with third-party assessment.

Achieve compliance with Payment Card Industry (PCI) Data Security Standard

Achieve PCI compliance status with QualysGuard's testing and compliance application.

• More Features

Unique Benefits

Turnkey Solution

As an on demand solution, QualysGuard Express requires no software to install, update or maintain, and is instantly deployable — all you need is access to the Internet and a web browser.

Easy-to-use, Comprehensive Reporting

Intuitive and easy-to-read reports provide both executive-level summaries and detailed technical analysis.

Fully Automated

Pre-defined templates and scheduled scans automate all steps of vulnerability assessment, management and policy compliance.

Cost Efficient with No Hidden Costs

On demand SaaS technology offers significant economic advantages with no capital expenditures, extra human resources or infrastructure to deploy and manage.

Accurate and Up-to-Date

QualysGuard has the largest KnowledgeBase of vulnerability signatures in the industry (5,500+) and performs over 150 million IP audits per year with a Six-Sigma accuracy rate. Since QualysGuard is centrally managed, vulnerability updates are made in real-time.

Strong Security Model

Protects in-transit and in-storage data using SSLv3 and AES encryption.

Technical Support, Product Training and Certification Workshops

Qualys offers 24x7x365 on demand technical support at no additional cost, and provides free product training options including: web-based customer training, technical training, certification workshops, and access to annual and regional user conferences and online training.

The SaaS Advantage

The concept is simple and attractive: Customers pay simply for using software, as opposed to owning the software itself. In other words, rather than buying a software license for an application and installing the software on individual machines, a business subscribes (via a monthly or yearly fee) to use the application hosted by the company that develops and sells the software.

Software as a Service (Saas) gives the buyer more flexibility to switch vendors and puts a stop to the continuous cycle of buying a software license, paying for a maintenance contract, and then having to go through time-consuming and expensive upgrades. SaaS eliminates these headaches, and enables businesses to achieve a lower and predictable total cost of ownership. Furthermore, since there are no capital expenditures, extra human resources or infrastructure (hardware and software) to deploy and manage, a SaaS solution is highly scalable, easily deployed, fully distributed and can be used anytime, anywhere on demand.

Another unique advantage to the SaaS model is that updates to the solution, including patches and vulnerability updates, are made in real time for all customers. As a result of these continuous improvements, QualysGuard scans are highly accurate and bugs are generally fixed within 48 hours.

As an added benefit to customers, SaaS solutions are especially secure and tamper proof, since support for operating and maintaining the solution falls squarely on the SaaS vendor. For example, Qualys encrypts all of its in-transit and in-storage data, and undergoes constant third-party security audits following standards such as the SAS70 Type II.

The bottom line, more and more organizations are making the shift to SaaS for one simple reason: it works and is cost effective.

• QualysGuard Architecture

Integrations

QualysGuard includes an extensible XML API for integration with third-party commercial and internal customer applications. QualysGuard's trusted, third-party vulnerability assessments provide a solid foundation for automated correlation and analysis. Robust integration capabilities benefit many types of organizations by improving the capabilities of existing solutions suchs as: SIEM, Patch Management, Help Desk, Risk Management, Network Admission Control, IDS/IPS, Network Patching, Network Behavior Analysis, Security Policy Management, Penetration Testing, and more.

• Integration Partners
• QualysGuard API User Guide
• QualysGuard API FAQs
• QualysGaurd API Sample Code
• QualysGuard for NAM API User Guide

Pricing

Two subscription models are available for QualysGuard Express:

Annual Subscription for Perimeter Scanning — Pricing is based on the number of IP addresses (up to 128).

Annual Subscription for Internal & Perimeter Scanning — Pricing for internal and external scanning is based on the number of IP addresses (up to 3,072).

Pricing Includes:

• All QualysGuard Features
• 1 (one) QualysGuard Scanner Appliance (except for perimeter-only subscriptions)
• Up to 3 (three) user accounts
• Unlimited Scans
• QualysGuard PCI compliance testing and certification application
• 24x7x365 email/telephone customer & technical support
• Weekly, Web-based customer training & regional certification workshops
• Free attendance to all Qualys user conferences and seminars

Contact sales for an immediate price quote.

   

Customers & Awards

Performing over 150 million IP audits per year, QualysGuard is the widest deployed security on demand solution in the world. Qualys is utilized by thousands of large and small organizations around the world.

• More customers
• Customer success stories
• Customer testimonials

QualysGuard is overwhelmingly recognized as the leader in its space. QualysGuard has won awards ranging from Best Vulnerability Management Solution, Best Security Product, Best Security Company, Best Network Protection Service and much more.

• See award details

© 1999 - 2008 Qualys, Inc. All rights reserved.