Cloud Platform
Solutions
Subscriptions
Cloud platform apps
Customers
Partners
Community
Support
Company
Login

Cloud platform apps

Cloud Security Assessment (Beta Coming Q4).

Get unparalleled visibility and continuous security of public cloud infrastructure.

As part of Qualys’ new app framework CloudView, CSA enables businesses to continuously monitor and secure their public cloud infrastructure against misconfigurations, malicious behavior and non-standard deployments

Key Features

Comprehensive visibility

CSA integrates with cloud platform providers’ native APIs to continuously discover all resources and provide full visibility into your entire cloud infrastructure. It also provides topological views of the infrastructure and relationships across other cloud resources. Users can drill down into the deployment architecture across different dimensions like location, network layouts and security group view to quickly get to the root cause of issues.

Continuous security monitoring

CSA automates security monitoring against industry standards to identify threats caused by misconfigurations, unauthorized access and non-standard deployments, and provides remediation steps to manage risks. It automates evaluation of compliance against regulatory mandates like PCI-DSS, HIPAA, NIST and ISO 27001 and generates reports for auditors.

Insight and threat prioritization

CSA’s complete cloud resource inventory information powers simple yet powerful search queries across an asset’s configuration and complex associations to quickly identify the root cause of incidents. To track and understand trends in elastic clouds, it provides real-time and historical views of the inventory. Security posture visibility includes cloud host vulnerability, compliance and threat intelligence data from the existing Qualys platform, so users can contextually prioritize and remediate threats.

Automated security for the DevOps pipeline

CSA supports REST APIs for seamless integration with the CI/CD tool chain, providing DevSecOps teams with an up-to-date assessment of potential risks and exposure. The solution can be integrated with Governance, Risk and Compliance, Security Information and Event Management, and ticketing service providers to help InfoSec teams automate processing of threats and remediation.

Powered by the Qualys Cloud Platform

Single-pane-of-glass UI

See the results in one place, in seconds. With AssetView, security and compliance pros and managers get a complete and continuously updated view of all of their IT assets — from a single dashboard interface. Its fully customizable and lets you see the big picture, drill down into details, and generate reports for teammates and auditors. Its intuitive and easy-to-build dynamic dashboards aggregate and correlate all of your IT security and compliance data in one place from all the various Qualys Cloud Apps. With its powerful elastic search clusters, you can now search for any asset – on-premises, endpoints and all clouds – with 2-second visibility.

Centralized & customized

Centralize discovery of host assets for multiple types of assessments. Organize host asset groups to match the structure of your business. Keep security data private with our end-to-end encryption & strong access controls. You can centrally manage users’ access to their Qualys accounts through your enterprise single sign-on (SSO). Qualys supports SAML 2.0-based identity service providers.

Easy deployment

Deploy from a public or private cloud — fully managed by Qualys. With Qualys, there are no servers to provision, no software to install, and no databases to maintain. You always have the latest Qualys features available through your browser, without setting up special client software or VPN connections.

Scalable and extensible

Scale up globally, on demand. Integrate with other systems via extensible XML-based APIs. You can use Qualys with a broad range of security and compliance systems, such as GRC, ticketing systems, SIEM, ERM, and IDS.