Cloud Security Posture Management (CSPM)
A comprehensive inventory of your public cloud workloads and infrastructure
Qualys CSPM can be set up in less than 5 minutes, with easy configuration and without the need to deploy agents. It can collect data from your accounts using the cloud providers’ APIs without disrupting your workloads. The inventory is built instantly with detailed metadata, and relationship mapping and analysis begin as soon as data flows in.
Create one or more connectors from the product’s UI or APIs
Automate account onboarding using templates
Continuously synchronize information from multiple accounts and multiple clouds
Qualys Cloud Inventory continuously discovers and tracks assets and resources, such as instances and virtual machines, storage buckets, databases, security groups, ACLs, ELBs, and users, across all regions, multiple accounts, and multiple cloud platforms. You can view all this information in one central place.
Provides a quick overview of inventory via pre-built dashboards and lets you personalize or build your own with custom widgets
Collects rich metadata for every resource and shows associations across resources, so you can understand scenarios such as which security groups are potentially public and unprotected and to which assets they are related
Charts of trending changes
Integrates with major cloud providers, including AWS, Azure, and Google
Qualys CSPM gives you an “at-a-glance” comprehensive picture of your cloud inventory, the location of assets across global regions, and complete visibility into all assets and resources’ public cloud security posture.
A single plane of glass view across public cloud providers such as AWS, Azure, and GCP
Provides a quick overview of cloud inventory and security posture via dashboards
Supports personalized or custom widgets based on queries or other criteria, such as “Top 10 accounts based on failures” or “Top 10 controls that are failing.”
Qualys CSPM runs continuous security checks on your cloud assets and resources. It provides 1000+ out-of-the-box security controls across the cloud to identify resource misconfigurations. The analysis provides clear evidence of security and compliance issues and offers remediation methods to mitigate any issues.
Provides complete coverage of CIS foundation benchmarks as well as Qualys best practices and architecture checks
Offers at-a-glance security overview of your cloud against evaluations, with a breakdown of every control’s security posture and threat inventory
Provides complete evidence and clear steps to drive remediation
Qualys CSPM supports over 30 compliance mandates such as PCI DSS, HIPAA, NIST CSF, and GDPR. The report includes a multi-account, multi-region view of compliance requirements. Continuously monitors compliance reports using the dashboard and on-screen reports. Reports can be extracted using APIs and processed in external tools.
Coverage for CIS Benchmarks across cloud providers comprises:
CIS Amazon Web Services Foundations Benchmark v1.5.0, Level 1
CIS Amazon Web Services Foundations Benchmark v1.5.0, Level 2
CIS Microsoft Azure Foundations Benchmark v2.0.0, Level 1
CIS Microsoft Azure Foundations Benchmark v2.0.0, Level 2
CIS Google Cloud Platform Foundation Benchmark v2.0.0, Level 1
CIS Google Cloud Platform Foundation Benchmark v2.0.0, Level 2
Qualys Cloud Security Assessment not only detects and evaluates the resources for misconfigurations but also supports over 50 high visibility controls for one-click remediation. One-click remediation allows you to remediate a control misconfiguration on a resource or a bulk of resources in a single-click to improve your compliance score.