Automated Vulnerability Management Available to Enterprises, SMBs, Consultants, and MSPs
CSI — November 3, 2003 — Qualys, Inc.,the market leader of on-demand Network Security Audits and Vulnerability Management, today announced it has broadened its QualysGuard® Web Service offering to meet the growing need for continuous network security scanning. Four new web services are now available from Qualys: QualysGuard Enterprise, QualysGuard Express, QualysGuard Consultant, and QualysGuard MSP. Each service includes specific features and pricing tailored to the needs of businesses and consultants.
“Hershey Foods depends on automated transactions with suppliers, distributors, and consumers. Proactive vulnerability assessment is a necessity to protect our business from zero-day exploits, worms, and hackers,” said Dan Klinger, Manager of Information Security for Hershey Foods. “We use QualysGuard to audit business-critical assets in order to protect our brand and our shareholders against potential financial loss. As a web service, QualysGuard Enterprise allows us to align our information security with our core business strategies.”
“Mitigating network weaknesses through vigilant and effective auditing and vulnerability management should be a primary goal of every IT security program,” said Allan Carey at IDC. “By packaging the Qualys Web Services to various market segment needs, organizations of all sizes now have the capability to implement an effective vulnerability assessment and remediation management program.”
According to IDC, security attacks from worms and hackers and industry regulations such as HIPAA, GLBA and SB 1386, will drive the market for vulnerability management to more than 30% growth over the next 5 years. Based on financial analyst estimates, August’s worms (e.g. RPC DCOM exploits) alone cost businesses two billion dollars worldwide in downtime and cleanup costs.
Qualys provides a portfolio of on-demand Network Security Audits and Vulnerability Management services delivered over the web to automate protection against worms, hackers, and other forms of attack while providing third-party certification of network security for regulatory compliance. The web service approach ensures immediately deployable network security audits with the highest degree of accuracy, data integrity and ease of use while delivering the lowest total cost of ownership. Companies receive daily updates about new security vulnerabilities, full security trending reports, and access to verified remedies-all without the cost and burden of deploying and maintaining complex software.
The following web services are now available to meet the needs of different organizations:
QualysGuard Enterprise Distributed and continuous scanning has become a requirement for all large enterprises; however, traditional software solutions are too complex to deploy and often provide unreliable results. QualysGuard’s scalable architecture provides global, multi-office organizations with immediate, accurate and distributed security scanning capabilities inside and outside the enterprise perimeter. Unique features of QualysGuard Enterprise include: distributed scanning with centralized executive and technical reports; distributed management with role and asset-based access for multiple users; API integration with existing network management and trouble ticketing systems; and remediation workflow available through Qualys’ own trouble ticketing system. QualysGuard Enterprise is available for large deployments with distributed locations. List price is based on a subscription of unlimited IP scans and starts at $40,000 per year.
QualysGuard Express Indiscriminate attacks target both large and small organizations and can have a devastating impact on small- and medium-sized businesses (SMBs). QualysGuard Express provides SMBs or enterprise business units with easy-to-use security audits and vulnerability management. Simple to deploy, the service is designed for single users in localized environments that need immediate access to scanning, mapping, reporting and verified remediation. QualysGuard Express is based on a subscription of unlimited scans and starts at $995 per year.
QualysGuard Consultant Security assessments have become a more frequent requirement of consultants and auditors. QualysGuard Consultant streamlines the process, enabling network security auditors to conduct assessments more efficiently, regularly, and accurately. By performing assessments remotely through Qualys’ web service, security consultants can reduce the cost and time of their engagements. QualysGuard Consultant’s exportable, customizable reports integrate easily into consultant report templates to provide clients a professional, consistent appearance. Available for consultants and auditors, the QualysGuard Consultant Starter Kit includes one Intranet Scanner Appliance, 250 initial scans, and a professional travel case. List price starts at $1,995.
QualysGuard MSP (Managed Service Provider) QualysGuard MSP enables managed service providers to immediately deploy a comprehensive vulnerability assessment service as a standalone solution or as part of an integrated suite of managed services. With QualysGuard MSP, service providers can offer critical vulnerability management services from an industry leader as part of a comprehensive and differentiated managed security program while preserving their brand. QualysGuard MSP supports a variety of branding and customized reporting options, while the straightforward, extensible APIs facilitate quick integration of QualysGuard MSP into internal tools and customer portals. Web-based back office and private CRM tools provide MSPs with integrated account maintenance and automated lead-generation capabilities. QualysGuard MSP is available immediately to MSPs on a revenue sharing basis.
With more than 2,000 subscribers ranging from small businesses to multinational corporations, Qualys has become the leader in on demand vulnerability management and policy compliance. The company allows security managers to strengthen the security of their networks effectively, conduct automated security audits and ensure compliance with internal policies and external regulations. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organisations. Hundreds of large companies have deployed Qualys on a global scale, including AXA, DuPont, Hershey Foods, ICI Ltd, Novartis, Sodexho, Standard Chartered Bank and many others. Qualys is headquartered in Redwood City, California, with European offices in France, Germany and the U.K., and Asian representatives in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.
Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.
For media inquiries or to find the appropriate spokesperson
Contact: Megan Lamb
For all other matters