Cloud Platform
Contact us

Cloud Security Posture Management (CSPM)

A comprehensive inventory of your public cloud workloads and infrastructure

Qualys Cloud Security Posture Management (CSPM) enables you to continuously discover, monitor, and analyze your cloud assets for misconfigurations and non-standard deployments so that you can take timely and appropriate action. Qualys CSPM is an integral part of Qualys TotalCloud solution, allowing organizations to start and stay secure in their cloud environments.

Single view of inventory

‘Single-pane-of-glass’ view to continuously discover resources across multi-cloud

Wide range of security controls

1000+ out-of-box controls, including Qualys best practices and CIS standards that continuously assess your cloud infra

Continuous compliance monitoring

Supports the 30+ compliance mandates such as PCI DSS and HIPAA and complete coverage of CIS benchmarks

A comprehensive inventory of public cloud resources with detection and remediation of misconfigurations and non-standard deployments.


Continuous security monitoring

Qualys CSPM boosts the security of your public clouds by identifying threats caused by misconfigurations, unwarranted access, and non-standard deployments. It automates security monitoring against industry standards, regulatory mandates, and best practices to prevent issues like leaky storage buckets, unrestricted security groups, and long-lived or expired keys.

Comprehensive visibility

Qualys CSPM continuously discovers resources in your public cloud deployments and gives you a ‘single-pane-of-glass’ view across all of them from a central control panel. It also aggregates information about assets and resources from one or multiple cloud platforms. That way, you can see all your instances, services, and supporting resources across every public cloud account.

Comprehensive security controls

Qualys CSPM security provides out-of-the-box coverage for 1000+ controls across AWS, Azure, and GCP, giving organizations comprehensive coverage of security controls to protect against a wide range of potential security threats.

Control of ephemeral environments

Qualys CSPM gives you both updated and historical views of your inventory and the ability to understand the relationships of your public cloud assets and resources across different dimensions. These include Accounts, location, and associated services such as security groups and network interfaces.

Qualys Cloud Inventory: Configuration | Qualys

Get up and running quickly and easily

Qualys CSPM can be set up in less than 5 minutes, with easy configuration and without the need to deploy agents. It can collect data from your accounts using the cloud providers’ APIs without disrupting your workloads. The inventory is built instantly with detailed metadata, and relationship mapping and analysis begin as soon as data flows in.

  • Create one or more connectors from the product’s UI or APIs

  • Automate account onboarding using templates

  • Continuously synchronize information from multiple accounts and multiple clouds

Qualys Cloud Inventory: Configuration | Qualys

Discover and inventory assets

Qualys Cloud Inventory continuously discovers and tracks assets and resources, such as instances and virtual machines, storage buckets, databases, security groups, ACLs, ELBs, and users, across all regions, multiple accounts, and multiple cloud platforms. You can view all this information in one central place.

  • Provides a quick overview of inventory via pre-built dashboards and lets you personalize or build your own with custom widgets

  • Collects rich metadata for every resource and shows associations across resources, so you can understand scenarios such as which security groups are potentially public and unprotected and to which assets they are related

  • Charts of trending changes

  • Integrates with major cloud providers, including AWS, Azure, and Google

Get a complete view of your cloud security posture

Qualys CSPM gives you an “at-a-glance” comprehensive picture of your cloud inventory, the location of assets across global regions, and complete visibility into all assets and resources’ public cloud security posture.

  • A single plane of glass view across public cloud providers such as AWS, Azure, and GCP

  • Provides a quick overview of cloud inventory and security posture via dashboards

  • Supports personalized or custom widgets based on queries or other criteria, such as “Top 10 accounts based on failures” or “Top 10 controls that are failing.”

Do continuous security checks

Qualys CSPM runs continuous security checks on your cloud assets and resources. It provides 1000+ out-of-the-box security controls across the cloud to identify resource misconfigurations. The analysis provides clear evidence of security and compliance issues and offers remediation methods to mitigate any issues.

  • Provides complete coverage of CIS foundation benchmarks as well as Qualys best practices and architecture checks

  • Offers at-a-glance security overview of your cloud against evaluations, with a breakdown of every control’s security posture and threat inventory

  • Provides complete evidence and clear steps to drive remediation

Continuous compliance monitoring

Qualys CSPM supports over 30 compliance mandates such as PCI DSS, HIPAA, NIST CSF, and GDPR. The report includes a multi-account, multi-region view of compliance requirements. Continuously monitors compliance reports using the dashboard and on-screen reports. Reports can be extracted using APIs and processed in external tools.

Coverage for CIS Benchmarks across cloud providers comprises:

  • CIS Amazon Web Services Foundations Benchmark v1.5.0, Level 1

  • CIS Amazon Web Services Foundations Benchmark v1.5.0, Level 2

  • CIS Microsoft Azure Foundations Benchmark v2.0.0, Level 1

  • CIS Microsoft Azure Foundations Benchmark v2.0.0, Level 2

  • CIS Google Cloud Platform Foundation Benchmark v2.0.0, Level 1

  • CIS Google Cloud Platform Foundation Benchmark v2.0.0, Level 2

One-click remediation

Qualys Cloud Security Assessment not only detects and evaluates the resources for misconfigurations but also supports over 50 high visibility controls for one-click remediation. One-click remediation allows you to remediate a control misconfiguration on a resource or a bulk of resources in a single-click to improve your compliance score.

Harden and defend your cloud. Sign up for Qualys TotalCloud.

Start your free trial today. No software to download or install. Email us to request a quote or call us at 1 (800) 745-4355.