Webcasts

Watch our complimentary webcasts on IT security and compliance best practices and more.

Featured Webcasts

Vulnerability Management Solution Vendor Rankings

Guest Speaker: Dr. Chenxi Wang (Forrester Research, Inc.)
When: Thursday, September 2nd at 10:00AM PST / 1:00PM EST

Forrester Research, Inc. just completed a comprehensive, 53-criteria assessment of vulnerability management solutions and ranked the various solution vendors.

In this session, Dr. Chenxi Wang, co-author of the 2010 Forrester WAVE report on Vulnerability Management, dissects the recent report findings, including:

  • Overview of the Forrester WAVE evaluation process
  • Findings of the Vulnerability Management WAVE
  • Evaluation of Qualys' Vulnerability Management Solution
  • Best practice recommendations on Vulnerability Management

This 30-minute webinar will also include a live Q&A session where attendees can submit questions.

Mitigating Network Security Risks Through Shared Vulnerability and Threat Intelligence

Featured Speaker: Jon Cook (Sr. Network Security Architect), TransUnion, LLC
Speaker: Richard Park (Sr. Product Manager), Sourcefire; Eric Perraudeau (Sr. Product Manager), Qualys
When: Tuesday, September 14th, 8am PST / 11am EST

In this 30-minute live webcast, Jon Cook of TransUnion will discuss how they've successfully enhanced their IPS/IDS with vulnerability management data — enabling TransUnion to improve security and reduce workload. This session will provide real-world examples of how QualysGuard's vulnerability intelligence can complement Sourcefire's threat intelligence to achieve robust network protection. Specifically, you will learn how QualysGuard can improve Sourcefire IPS impact assessment by:

  • Correlating threats against "actual" rather than "potential" operating system vulnerabilities
  • Correlating threats against an expanded set of vulnerabilities across the enterprise
  • Extending the reach of passive network intelligence through active scanning technology

Building and Maintaining a Proactive Security Program for Web Sites

Presented by: Sean Molloy, Director of Engineering, Qualys, Inc.

As more and more business is transacted over the Internet, it is important for consumers to know that the web sites they visit are taking online security seriously. Web site owners need to be able to demonstrate to their online customers that they are being proactive about the security of their web sites.

By using Qualys GO SECURE, businesses can demonstrate that their web sites are following rigorous security testing procedures on a regular basis. The new service allows businesses of all sizes to test their web sites for the presence of malware, network and web application vulnerabilities, as well as SSL certificate validation; and provides a Qualys SECURE seal for the merchant to display on their web site demonstrating to online customers that their company is maintaining a rigorous and proactive security program.

This presentation will introduce the Qualys GO SECURE service and provide a live demonstration.

Protect Your Web Sites from Serving Malware

Presented by: Brett Hardin, Product Manager, Qualys, Inc.

Thousands of web sites are infected with malware daily and unknowingly propagating the infection to visitors of their sites. To combat these rapidly spreading threats, Qualys is introducing a free new anti-malware service. QualysGuard Malware Detection lets businesses proactively scan their web sites for malware infections and threats.

This presentation focuses on how to prevent drive-by malware from being served from your business web sites. It will include a live demonstration of the groundbreaking QualysGuard Malware Detection service followed by a Q&A session.

The Laws of Vulnerabilities Research - Categorized by Industry

Hosted by: Jeanne Friedman (Editor-in-Chief of RSA Conference) and presented by Wolfgang Kandek (CTO, Qualys).

This presentation is a unique view of vulnerability data compiled from millions of systems and gathered from over 100 million scans worldwide. Within 24 months, critical vulnerabilities were identified on real-world systems and categorized by industry. This research show critical vulnerabilities and relationship to threats, time-to-patch trends and other factors that affect remediation efforts.

    Vulnerability Management Webcasts

    • Cloud Computing: A Positive Disruption for IT Security

      Cloud Computing: A Positive Disruption for IT Security

      Speaker:
      Forrester Research's Dr. Chenxi Wang, Cisco's John Stewart, and Qualys' Philippe Counrtot
      Overview:

      Cloud Computing and how it impacts IT security.

      • Why Cloud Computing has "changed the game" for IT security professionals.
      • How leading organizations are embracing (and preparing for) the continued shift to the Cloud.
      • What Best-practice steps information security professionals can follow to strengthen their Cloud Computing environment.
    • Fast Track: Planning & Deploying an Effective Vulnerability Management Program

      Fast Track: Planning & Deploying an Effective Vulnerability Management Program

      Speaker:
      Jonathan Bitle, Qualys
      Overview:

      This webcast covers the essential components of a successful Vulnerability Management program that allows you proactively identify risk to protect your network and critical business assets.

      Key take-aways:

      • Integrating the 3 critical factors - people, processes & technology
      • Saving time and money via automated tools
      • Anticipating and overcoming common Vulnerability Management roadblocks
      • Meeting security regulations and compliance requirements with Vulnerability Management
    • Proactive Vulnerability Management

      Proactive Vulnerability Management

      Speaker:
      Dr. Chenxi Wang, Principal Analyst, Security and Risk Management, Forrester Research, Inc.
      Overview:

      In this talk, Dr. Chenxi Wang, Principal Analyst for Security and Risk Management at Forrester Research, will cover the key aspects of proactive vulnerability management and more importantly, the steps via which you can follow to achieve proactive vulnerability management. More specifically:

      • Continuing assessment of network and devices
      • Integration with your IT risk management systems
      • Effective analysis of assessment results
      • Implementation of proactive remediation

      We will also cover success metrics via which organizations can use to measure the maturity of their vulnerability management programs.

    • On Demand Vulnerability Management

      On Demand Vulnerability Management

      Speaker:
      Jonathan Bitle, Senior Product Manager, Qualys
      Overview:

      This podcast examines what to look for in a self-auditing solution, how to use vulnerability management to ease the pain and why your software solution really matters.

      Government and industry regulations, along with mounting security threats, are causing corporations to consider continual self-audits. These drive down costs, help focus remediation efforts and improve your overall security posture. Learn how to start your own self-auditing process by setting goals and answering key questions about your infrastructure.

    • There's a Hole in Your Network - Vulnerability Management Is No Mystery

      There's a Hole in Your Network - Vulnerability Management Is No Mystery

      Speaker:
      Paul Gillin, Principal, Paul Gillin Communications
      Overview:

      Learn how vulnerability management allows you to keep on top of these problems by identifying an organization's greatest security vulnerabilities and proactively recommending fixes.

      Open networks and supply chain integration create great business opportunities but also substantial security risks. The bad guys are using more sophisticated tools to create viruses, worms, rootkits and other attacks, and malware is spreading faster than ever. Learn how vulnerability management allows you to keep on top of these problems by identifying an organization's greatest security vulnerabilities and proactively recommending fixes.

    • Developing a Vulnerability Management Habit the Easy Way

      Developing a Vulnerability Management Habit the Easy Way

      Speaker:
      Simon Herring, Founder and CTO of Jacadis
      Overview:

      Listen to Core Security, Jacadis and Qualys discuss how you can bring potent vulnerability management into your organization. Simon Herring, founder and CTO of Jacadis, shares his insights on how you can develop and maintain a vulnerability management program that provides ongoing protection against hacking, spear phishing, and other IS threats. In this webcast, you'll also see security testing tools that allow you to:

      • Identify network weaknesses and safely prove their exploitability
      • Evaluate end-user response to social engineering attacks
      • Test and tune defensive applications such as IPS, IDS and firewalls
      • Validate patches and other vulnerability fixes
      • Establish a comprehensive, in-house VM methodology
    • Effective Workflow for Fixing Network Vulnerabilities & Policy Compliance

      Effective Workflow for Fixing Network Vulnerabilities & Policy Compliance

      Speaker:
      Sandra Gittlen, Technology Editor, NetworkWorld
      Speaker:
      Terry Ramos, Director of Strategic Development, Qualys
      Overview:

      This webcast overviews the 8 workflow processes that create an effective vulnerability management solution to ensure security and document compliance. Discover how the right software-as-a-service (SaaS) solution automates these processes for fast, cost-effective remediation and policy compliance.

      View this webcast and learn about and effective remediation plan that provides continuous protection from network vulnerabilities and helps comply with regulations such as PCI, GLBA and HIPAA.

    • Addressing Compliance Challenges with Automated Vulnerability Management

      Addressing Compliance Challenges with Automated Vulnerability Management

      Speaker:
      Dr. Chenxi Wang, Principal Analyst, Security and Risk Management, Forrester Research, Inc.
      Overview:
      Automated, on-demand vulnerability assessment and management is a powerful instrument for organizations to stay compliant and stay one step ahead of attackers. In this webcast, we will briefly address different compliance requirements and the industry best practices of using vulnerability management to achieve compliance.
    • How One Company Conquered the Audit Challenge

      How One Company Conquered the Audit Challenge

      Speaker:
      Randy Harris, Network Manager, United States Marine Corps - MCCS
      Overview:

      The Marine Corps Community Services (MCCS) manages a global network that serves Marines and their families. MCCS chose a managed service to conduct comprehensive vulnerability assessments and prioritize patches and fixes.

      With thousands of nodes spread throughout the world, security is a real concern. MCCS chose a managed service to conduct comprehensive vulnerability assessments and prioritize patches and fixes. The service has saved time and money while contributing to peace of mind. MCCS manager of network services Randy Harris talks about the project.

    • Web 2.0 Security Threats: How to Protect Your Enterprise Network

      Web 2.0 Security Threats: How to Protect Your Enterprise Network

      Speaker:
      Dr. Chenxi Wang, Principal Analyst, Security and Risk Management, Forrester Research, Inc.
      Overview:

      As Enterprises are increasingly connected to the Internet and as hard organizational boundaries are fast disappearing, security professionals are facing fresh challenges in Enterprise computing. One crucial element of success in this environment is application security, which serves as a foundation to all information security initiatives. This webcast explores the following topic in detail:

      • Global trends and the enterprise security impact of Web 2.0 adoption, de-perimeterization, and the consumerization of corporate IT.
      • Steps information security professionals can follow to strengthen application security, especially in an open and collaborative environment.
      • An overall application security maturity model, and steps to create best-practices for application security.

    Policy Compliance Webcasts

    • Addressing Compliance Challenges with Automated Vulnerability Management

      Addressing Compliance Challenges with Automated Vulnerability Management

      Speaker:
      Dr. Chenxi Wang, Principal Analyst, Security and Risk Management, Forrester Research, Inc.
      Overview:
      Automated, on-demand vulnerability assessment and management is a powerful instrument for organizations to stay compliant and stay one step ahead of attackers. In this webcast, we will briefly address different compliance requirements and the industry best practices of using vulnerability management to achieve compliance.
    • Effective Workflow for Fixing Network Vulnerabilities & Policy Compliance

      Effective Workflow for Fixing Network Vulnerabilities & Policy Compliance

      Speaker:
      Sandra Gittlen, Technology Editor, NetworkWorld
      Speaker:
      Terry Ramos, Director of Strategic Development, Qualys
      Overview:

      This webcast overviews the 8 workflow processes that create an effective vulnerability management solution to ensure security and document compliance. Discover how the right software-as-a-service (SaaS) solution automates these processes for fast, cost-effective remediation and policy compliance.

      View this webcast and learn about and effective remediation plan that provides continuous protection from network vulnerabilities and helps comply with regulations such as PCI, GLBA and HIPAA.

    • Automating Policy Compliance and IT Governance

      Automating Policy Compliance and IT Governance

      Speaker:
      Jason Creech, Qualys
      Overview:

      This webcast covers the foundations of a successful IT Governance and Policy Compaliance program and how your organization can seamlessly align IT controls and processes with strategic business objectives.

      Key take-aways

      • Defining current IT GRC challenges
      • Reviewing regulatory lansdscape and compliance requirements
      • Automating IT GRC with Software-as-a-Service

    PCI Webcasts

    • PCI Compliance 2008: What You Need to Know

      PCI Compliance 2008: What You Need to Know

      Speaker:
      Sumedh Thankar, PCI Compliance Lead Engineer, Qualys
      Overview:

      This webcast covers the key facts you need to know about the current and upcoming PCI compliance requirements. In less than 30 minutes, this session gives you the straightforward break-down on all the new PCI changes. You'll also learn about today's best practice methodologies used by leading organizations to achieve compliance and avoid penalties. This webcast concludes with a comprehensive merchant Q&A session.

      Key take-aways:

      • What are the new PCI Compliance changes (current and planned)
      • When the changes go into effect & how they impact your business
      • How to automate the PCI Compliance processes
    • Winning the PCI Compliance Battle - Best Practices to Manage the PCI Process

      Winning the PCI Compliance Battle - Best Practices to Manage the PCI Process

      Speaker:
      Terry Ramos, Director Strategic Development, Qualys
      Overview:

      The Payment Card Industry Security Data Standard, or PCI, protects cardholders and businesses by establishing standard practices for processing, storing and transmitting credit card data but thefts still occur at an unprecedented rate.

      This webcast will explore:

      • Compliance Requirements of the PCI Data Security Standard
      • Participation and Validation Requirements
      • Selecting a PCI Network Security Testing Service
      • Automating the PCI Validation Process with QualysGuard PCI
    • PCI Tools & Techniques

      PCI Tools & Techniques

      Overview:
      Technologies for Meeting the PCI DSS
    • QualysGuard PCI Web Application Scanning Demonstration

      QualysGuard PCI Web Application Scanning Demonstration

      Overview:

      QualysGuard PCI 3.0 Web Application Scanning module is an automated tool for evaluating Web applications before and after deployment.

      This 10 minute demonstration is available on demand and includes a brief overview of the product along with a detailed walkthrough of the new features.

    Web App Security Webcasts

    • QualysGuard PCI Web Application Scanning Demonstration

      QualysGuard PCI Web Application Scanning Demonstration

      Overview:

      QualysGuard PCI 3.0 Web Application Scanning module is an automated tool for evaluating Web applications before and after deployment.

      This 10 minute demonstration is available on demand and includes a brief overview of the product along with a detailed walkthrough of the new features.

    Malware Webcasts

    • Protect Your Web Sites from Serving Malware

      Protect Your Web Sites from Serving Malware

      Speaker:
      Presented by: Brett Hardin, Product Manager, Qualys, Inc.
      Overview:

      Thousands of web sites are infected with malware daily and unknowingly propagating the infection to visitors of their sites. To combat these rapidly spreading threats, Qualys is introducing a free new anti-malware service. QualysGuard Malware Detection lets businesses proactively scan their web sites for malware infections and threats.

      This presentation focuses on how to prevent drive-by malware from being served from your business web sites. It will include a live demonstration of the groundbreaking QualysGuard Malware Detection service followed by a Q&A session.