Cloud Security Assessment.

Continuously monitor and assess your cloud assets and resources for misconfigurations and non-standard deployments.

Next-generation cloud app for unparalleled visibility and continuous security of public cloud infrastructure

Press Release Qualys Announces Two New Free Groundbreaking Services to Help Organizations Gain Visibility of Their Digital Certificates and Cloud Assets

Discover and inventory cloud assets
Monitor users, instances, networks, storage, databases and their relationships

Highlights

Continuous security monitoring

Qualys Cloud Security Assessment boosts the security of your public clouds by identifying threats caused by misconfigurations, unwarranted access, and non-standard deployments. It automates security monitoring against industry standards, regulatory mandates and best practices to prevent issues like leaky storage buckets, unrestricted security groups, and crypto-mining attacks.

Insight and threat prioritization

The elastic nature of the cloud makes it difficult to track and prioritize threats. With its unified security solution, Qualys provides a 360-degree view of cloud assets’ security posture, which includes cloud host vulnerabilities, compliance requirements and threat intelligence insights, so users can contextually prioritize remediation.

Quick identification of incident causes

With Qualys Cloud Security Assessment, you can quickly find out the root cause of incidents. By crafting simple yet powerful queries, you can search through the complete cloud resource inventory. The results show assets’ configurations and complex associations. With this information, you can also identify similar assets and mitigate issues in a unified way.

Comprehensive DevOps protection

Qualys Cloud Security Assessment lets you integrate security into your DevOps pipeline, automating security checks, identifying and eliminating issues, and standardizing deployment templates to make production environments more secure. Qualys Cloud Security Assessment features are supported via REST APIs for seamless integration with the CI/CD tool chain, providing DevSecOps teams with an up-to-date assessment of potential risks and exposure.

Get a complete view of your cloud security posture

Qualys Cloud Security Assessment gives you an “at-a-glance” comprehensive picture of your cloud inventory, the location of assets across global regions, and full visibility into the public cloud security posture of all assets and resources.

Provides a quick overview of inventory and security posture via dashboards
Lets you personalize or build your own with custom widgets based on queries or on other criteria, such as “Top 10 accounts based on failures” and “Top 10 controls that are failing”

Do continuous security checks

Qualys Cloud Security Assessment runs continuous security checks on your cloud assets and resources. The data is quickly synchronized for new and updated assets. The analysis provides clear evidence of security and compliance issues, and offers remediation methods to mitigate issues.

Provides complete coverage of CIS AWS foundation benchmarks, and of Qualys best practices and architecture checks
Offers security overview of your cloud against evaluations at a glance, with a breakdown of every control’s security posture and of its threat inventory
Provides complete evidence and clear steps to drive remediation

Automate security using REST APIs

Qualys Cloud Security Assessment fully supports REST APIs for seamless integration with the CI/CD tool chain, providing DevSecOps teams with real-time assessments of potential risks and exposures, so that they can mitigate risks before deploying apps into production. This also enables integration with GRC, SIEM, and ticketing service providers to help InfoSec teams automate process threats and remediation.

Powered by the Qualys Cloud Platform

Single-pane-of-glass UI

See the results in one place, in seconds. With AssetView, security and compliance pros and managers get a complete and continuously updated view of all of their IT assets — from a single dashboard interface. Its fully customizable and lets you see the big picture, drill down into details, and generate reports for teammates and auditors. Its intuitive and easy-to-build dynamic dashboards aggregate and correlate all of your IT security and compliance data in one place from all the various Qualys Cloud Apps. With its powerful elastic search clusters, you can now search for any asset – on-premises, endpoints and all clouds – with 2-second visibility.

Centralized & customized

Centralize discovery of host assets for multiple types of assessments. Organize host asset groups to match the structure of your business. Keep security data private with our end-to-end encryption & strong access controls. You can centrally manage users’ access to their Qualys accounts through your enterprise single sign-on (SSO). Qualys supports SAML 2.0-based identity service providers.

Easy deployment

Deploy from a public or private cloud — fully managed by Qualys. With Qualys, there are no servers to provision, no software to install, and no databases to maintain. You always have the latest Qualys features available through your browser, without setting up special client software or VPN connections.

Scalable and extensible

Scale up globally, on demand. Integrate with other systems via extensible XML-based APIs. You can use Qualys with a broad range of security and compliance systems, such as GRC, ticketing systems, SIEM, ERM, and IDS.

Learn more about the Qualys Cloud Platform

Subscriptions

Cloud platform apps

Global IT Asset Management

IT Security

Cloud/Container Security

Web App Security

Compliance

Customers

Partners

Company

Support

Community