Qualys Releases Support for Singapore MAS IBTRM Guidelines

SINGAPORE – RSA Conference Asia Pacific & Japan –– 22nd July 2014 – Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of cloud security and compliance solutions, today announced its now supports the Monetary Authority of Singapore (MAS) Internet Banking Technology Risk Management (IBTRM) compliance guidelines to help customers in automated assessment and auditing of the technical requirements of MAS IBTRM.

To achieve business objectives and meet customer requirements, financial institutions depend on IT technology infrastructure to perform business activities and operations. This infrastructure poses a number of challenges to these organisations in terms of evolving cyber threats, compliance requirements and securing key configurations. The MAS IBTRM guidelines provide banks and financial institutions with a sound framework of risk management principles and security best practices to address basic security configurations needs, evolving technology risks and compliance requirements.

Qualys Policy Compliance (PC), a cloud service that performs automated security configuration assessments on IT systems throughout the network helps address a wide spectrum of the technical recommendations provided by the Compliance Checklist for IBTRM including:

• Automated compliance scanning using QualysGuard infrastructure used for vulnerability scanning.

• Continuously maintained knowledgebase is based on CIS and NIST standards and maps to many frameworks & regulations.

• Improved Policy Editor to construct policies from controls and map them to internal standards and external regulations.

• Compliance report-templates to show compliance by policy, by control, and by host.

• Exception management workflow for creating, evaluating, and approving risk acceptance of policy violations.

• Collaboration capabilities to review policies and approve exceptions with internal and external auditors.

Built on the world’s leading Cloud security and compliance platform, Qualys PC saves companies from the substantial cost, resource and deployment issues associated with traditional software products. Known for its fast deployment, ease of use, unparalleled scalability, and rich integration with enterprise GRC systems, Qualys PC helps organisations around the world adhere to compliance standards mandates including PCI- DSS, HIPAA, FFIEC, NERC, COBIT, ISO 27011 as well as security standards such as NIST and CIS.

“Internet banking provides a number of benefits to customers around the world, however it also poses technology risks for financial institutions which increasingly rely on the Internet to operate their business,” said Philippe Courtot, CEO for Qualys, Inc. “Qualys Policy Compliance helps IT security organisations meet the demands of internal and external auditors by automating vulnerability and compliance management processes to improve an effectiveness in reducing risk and providing proof of compliance demanded by auditors across multiple compliance initiatives such as MAS IBTRM.”

Additional Resources

• Learn more about Qualys Policy Compliance
• Visit the Qualys expo booth (#P3) at RSA Asia Pacific & Japan
• Attend one of Qualys presentations at RSA Asia Pacific & Japan
• Follow Qualys on Facebook and Twitter

About Qualys, Inc.

Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of cloud security and compliance solutions with over 6,700 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100. The QualysGuard Cloud Platform and integrated suite of solutions help organisations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organisations including Accuvant, BT, Dell SecureWorks, Dimension Data, E-Cop, Fujitsu, HCL, NTT, Symantec, Verizon and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA) and a Premium Corporate Member of OWASP. For more information, please visit www.qualys.com.

MEDIA CONTACT
Melissa Liton
Qualys, Inc.
(650) 801-6242
mliton@qualys.com

###

Media Contact:
Tami Casey
Qualys
media@qualys.com