New Qualys Security and Compliance Suite Provides Reporting Metrics for Enterprise Stakeholders

QualysGuard 6.0 Provides Collaboration Workflow and Comprehensive Scorecards on Network Security and Compliance Status for Operations Staff, Business Line Managers and Auditors

Redwood City, Calif - April 22, 2008 - Qualys, Inc. today announced QualysGuard® 6.0, an upgrade to its flagship solution for vulnerability and compliance management. QualysGuard 6.0 enables security managers and key organization executives, including business line managers, members of the board and auditors, to get an on demand view of IT security and compliance within the enterprise. QualysGuard 6.0 offers new metrics reporting supported by scorecards and secure, collaborative report distribution workflows which help operations and IT staff to be efficient and communicate effectively with auditors and executive management.

QualysGuard 6.0 is an integral component of the QualysGuard Security and Compliance Suite. The QualysGuard Software-as-a-Service (SaaS) suite helps organizations worldwide manage the ongoing convergence of security and policy compliance efforts.

“Accurate measurement is essential for effective security management. This latest innovation from Qualys is a major leap forward towards achieving fully integrated vulnerability and compliance management across our widely distributed network. One of our greatest challenges is gathering results globally and then building them into meaningful reports, presenting to senior management the progress made in remediation and to our auditors, the state of compliance across our enterprise, “ said John Meakin, group head of information security for Standard Chartered Bank. “QualysGuard 6.0 gives us the ability to produce metrics reports on demand and distribute them securely between IT, audit staff and key business executives. On the business level, this helps elevate the issue of security into the boardroom. On a practical level, it promotes a more robust and cost-effective security strategy.”

As a SaaS offering, QualysGuard 6.0 requires no infrastructure to maintain or manage. Therefore, customers can immediately take advantage of the new features of the QualysGuard platform without having to install any new software. QualysGuard 6.0 features include:

  • New “Scorecard” Reporting Feature: QualysGuard 6.0 introduces a new fully customizable report type, the scorecards, offering on demand reporting of the most vulnerable hosts, most prevalent vulnerabilities, required software (patches and agents), asset group vulnerabilities, and ignored vulnerabilities. These scorecards can be crafted to create a view of vulnerability and missing patch information across a business unit or the entire network.
  • Collaborative Report Distribution: QualysGuard 6.0 offers IT managers and business unit managers the ability to create custom reports and share them securely with other users within the application regardless of the users’ access privileges. This is most valuable in support of sharing scorecards and other comparison reports across the security and audit teams.
  • New Secure Distribution of Reports: QualysGuard 6.0 supports the ability to securely and automatically distribute encrypted PDF reports to parties outside of the subscription via email in support of executives or business line owners that need reports but do not have user accounts in QualysGuard.

“As we have seen with CRM software, the Software-as-a-Service delivery model allows for broader usage as it allows users to access information from anywhere at anytime,” said Philippe Courtot, CEO and chairman of Qualys. “This is specifically important with security applications as security issues are a concern of many stakeholders who all need to be involved and receive the security information according to their focus.”

Availability

General availability of QualysGuard 6.0 is slated for April 22 2008 in the US and May 22 2008 in EMEA.

About Qualys

Qualys, Inc. is the leading provider of on demand IT security risk and compliance management solutions – delivered as a service. Qualys’ Software-as-a-Service solutions are deployed in a matter of hours anywhere in the world, providing customers an immediate and continuous view of their security and compliance postures. The QualysGuard® service is used today by more than 3,500 organizations in 85 countries, including 35 of the Fortune Global 100 and performs more than 200 millions IP audits per year. Qualys has the largest vulnerability management deployment in the world at a Fortune Global 50 company with 223 appliances scanning more than 700,000 systems in 53 countries. In addition, Qualys has established strategic agreements with leading managed service providers and consulting organizations including BT, Etisalat, Fujitsu, IBM, I(TS)2, LAC, SecureWorks, Symantec, TELUS and VeriSign. For more information, please visit www.qualys.com.

###

Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

For all other matters
Contact: pr@qualys.com

Media Contact:
Tami Casey
Qualys
media@qualys.com