Symantec And Qualys Team To Offer Third-Party Vulnerability Assessment Intelligence To The Symantec Security Management System

Cupertino and Redwood City, CA — May 26, 2004 — Symantec Corp. (Nasdaq: SYMC), the world leader in information security, and Qualys, Inc., today announced that QualysGuard Enterprise is certified as interoperable with the Symantec Security Management System. Qualys is the first third-party vulnerability management company to offer certified integration of real-time vulnerability assessment data with the Symantec Security Management System. This certification allows customers to log and aggregate security events generated by first- and third-party products within the Symantec Security Management System alongside vulnerability data gathered from QualysGuard. The Symantec and Qualys combined offering alleviates enterprise customers from having to monitor security products from multiple platforms, and adds a layer of intelligence to protect critical assets from network attacks.

Qualys worked closely with Symantec through the Symantec Technology Partner Program to develop the Qualys Event Collector for use with the Symantec Security Management System. This Collector links in real-time to QualysGuard and automatically logs vulnerability assessment data and displays high-level vulnerability details through the Symantec Security Management System.

“The benefits of having an integrated solution available to log and manage security events across platforms is of great value to today’s enterprises,” said Dan Klinger, manager of information security, Hershey Foods. “We are pleased to see two trusted companies, Symantec and Qualys, come together to help us respond to potential attacks on our networks more effectively.”

“The integration of vulnerability assessment data with security event data is a common requirement of organizations that are deploying security event management technologies,” said Mark Nicolett, vice president at Gartner Research. “This type of integration allows security personnel to prioritize security events based on the likelihood of a successful attack.”

Qualys has already incorporated vulnerability data generated by Symantec’s DeepSight Alert Services. Symantec plans to continue work with Qualys and other leaders in the vulnerability management market to incorporate third-party vulnerability assessment information into the Symantec Security Management System and offer customers the choice that best fits their needs.

Availability

The Symantec Security Management System components are currently available through Symantec’s worldwide network of value-added authorized resellers, distributors and systems integrators. Organizations can be connected with Symantec resellers or distributors in their areas by visiting the Symantec Solution Provider locator at http://www.symantec.com/partners/partners_frames.html.

QualysGuard Enterprise is available through Qualys sales channels. The QualysGuard Collector is bundled with the QualysGuard Enterprise and is available immediately at no additional charge to enterprise customers who wish to integrate QualysGuard Enterprise with the Symantec Security Management System.

About Symantec Security Management System

The Symantec Security Management System is comprised of multiple components that can be purchased and used separately, or integrated with one another to provide the right set of security management applications unique to individual business objectives. Key components of the Symantec Security Management System include Symantec Incident Manager, Symantec Enterprise Security Manager and Symantec Event Managers for antivirus, firewall, intrusion protection and integrated security. The Symantec Security Management System also supports several third-party products with the use of event collectors.

About Qualys

With more than 2,000 subscribers ranging from small businesses to multinational corporations, Qualys has become the leader in on demand vulnerability management and policy compliance. The company allows security managers to strengthen the security of their networks effectively, conduct automated security audits and ensure compliance with internal policies and external regulations. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organisations. Hundreds of large companies have deployed Qualys on a global scale, including AXA, DuPont, Hershey Foods, ICI Ltd, Novartis, Sodexho, Standard Chartered Bank and many others. Qualys is headquartered in Redwood City, California, with European offices in France, Germany and the U.K., and Asian representatives in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.

Symantec Technology Partner Program

The Symantec Technology Partner Program establishes standards for how diverse security and infrastructure products from multiple vendors can work together with Symantec technologies to simplify complex enterprise networks for joint customers. The Symantec Technology Partner Program offers comprehensive integration tools, development support, joint sales and marketing resources and product certification. Partners whose solutions meet Symantec’s established criteria for interoperability earn the use of applicable Symantec certification logos. Detailed information on the program procedures, requirements, and benefits can be found at www.symantec.com/technologypartners.

About Qualys

Qualys is the leading provider of on-demand Network Security Audits and Vulnerability Management. Qualys enables large and small organizations to manage security from an attacker’s perspective and fix real-world weaknesses before they are exploited. Qualys’ web services are used simultaneously by executives and technicians to measure security effectiveness, enforce security policy, and comply with regulations. Thousands of customers rely on Qualys, including Hershey Foods, Hewlett Packard, and The Thomson Corporation. Qualys is headquartered in Redwood City, California, with global offices in France, Germany and the U.K. For more information about Qualys, please visit www.qualys.com.

About Symantec

Symantec is the global leader in information security providing a broad range of software, appliances and services designed to help individuals, small and mid-sized businesses, and large enterprises secure and manage their IT infrastructure. Symantec’s Norton brand of products is the worldwide leader in consumer security and problem-solving solutions. Headquartered in Cupertino, Calif., Symantec has operations in more than 35 countries. More information is available at http://www.symantec.com.

Symantec and the Symantec logo are trademarks or registered trademarks, in the United States and certain other countries, of Symantec Corporation. Qualys and Qualys products are trademarks or registered trademarks, in the United States and certain other countries, of Qualys Inc. Additional company and product names may be trademarks or registered trademarks of the individual companies and are respectfully acknowledged.

Media Contact:
Tami Casey
Qualys
media@qualys.com