Qualys Expands Remediation Interoperability and Internal Policy Compliance Offerings

CSI Conference, Washington, D.C. — November 8, 2004 — Qualys Inc., the leading provider of on demand vulnerability management solutions, today announced its winter release, QualysGuard® 3.4, introducing agentless trusted scanning for UNIX, a Remediation Workflow module for third-party helpdesk systems, and immediate integration with Remedy, the leading service management solution. The QualysGuard service is automatically updated with all new product additions at no additional cost to Qualys customers.

“Qualys is taking vulnerability management to the next level by providing ‘out-of-the-box’ integration with Remedy,” said Charles Kolodgy, research director for IDC’s Security Products. “Additionally, through the release of XML-based APIs, Qualys is making it easier for other enterprise applications to seamlessly communicate with the vulnerability management system without requiring time-consuming customization.”

Remediation Workflow is a key step in vulnerability management as it allows customers to track the complete lifecycle of a ticket – from creation to closure – creating an audit trail to help prioritize and enforce remediation policies on a global scale. QualysGuard 3.4 expands its Remediation Workflow capabilities with the addition of a secure XML API module that enables seamless integration with any third-party trouble ticketing or helpdesk system.

Trusted Scanning

With its winter release Qualys is also enabling customers to manage vulnerabilities at a deeper level in their network by extending its trusted scanning offering to UNIX. Trusted scanning provides organizations with authenticated host-level configuration and security data that was previously only available by installing agents on every device connected to the network. By supplying authentication credentials, trusted scanning returns important information such as missing patches and current password settings that can be used to verify that each host on the network adheres to internal security policies.

“Trusted scanning allows our customers to systematically audit their network infrastructure all the way down to individual PCs without the burden of deploying agents on every desktop and server,” said Gerhard Eschelbeck, CTO and VP of Engineering for Qualys. “Organizations can test the security of their systems from an internal, external and host-level perspective to ensure they are in compliance with internal security policies.”

Pricing and Availability

QualysGuard 3.4 will be generally available in December 2004. The QualysGuard service is automatically updated with all new product additions at no additional cost to current Qualys customers. QualysGuard Enterprise annual subscriptions start at $14,995 and include unlimited scanning, 24x7 support, all product maintenance, and the cost of scanner appliances.

About QualysGuard

QualysGuard is an on demand vulnerability management solution that enables organizations to assess and manage business risk. QualysGuard automates the network security auditing process across the enterprise both inside and outside the firewall, and across distributed networking environments. QualysGuard provides network discovery and mapping, asset prioritization, centralized reporting, and remediation workflow and verification. Executive-level reports allow security professionals to demonstrate effective security practices and verify compliance with data protection laws and regulations. QualysGuard’s on demand technology is far more accurate, cost effective, and easier to deploy than software-based alternatives.

About Qualys

With more than 2,000 subscribers ranging from small businesses to multinational corporations, Qualys has become the leader in on demand vulnerability management and policy compliance. The company allows security managers to strengthen the security of their networks effectively, conduct automated security audits and ensure compliance with internal policies and external regulations. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organisations. Hundreds of large companies have deployed Qualys on a global scale, including AXA, DuPont, Hershey Foods, ICI Ltd, Novartis, Sodexho, Standard Chartered Bank and many others. Qualys is headquartered in Redwood City, California, with European offices in France, Germany and the U.K., and Asian representatives in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.

Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

Media Contact:
Tami Casey
Qualys
media@qualys.com