Cloud Platform
Contact us
Asset Management
Vulnerability & Configuration Management
Risk Remediation
Threat Detection & Response
  • Overview
  • Platform Apps

  • Qualys Endpoint Security

    Advanced endpoint threat protection, improved threat context, and alert prioritization

  • Context XDR

    Extend detection and response beyond the endpoint to the enterprise

Cloud Security

Rsam and Qualys Partner to Tightly Integrate Rsam GRC with QualysGuard Policy Compliance

New Integration Helps Customers Identify and Measure Compliance Within the Context of the GRC Framework

Secaucus, N.J. and Redwood City, Calif. - November 10, 2010 - Rsam, a leader in governance, risk and compliance (GRC) solutions and Qualys, Inc., the leading provider of on demand IT security risk and compliance management solutions, today announced the formal integration of QualysGuard Policy Compliance (PC) and the Rsam GRC Platform. This will extend the companies’ existing partnership, which included Rsam GRC with QualysGuard Vulnerability Management (VM), to deliver GRC workflow, remediation and reporting capabilities to joint customers for IT policy compliance.

This latest integration with QualysGuard PC will allow customers to measure their compliance checks results against a broader risk and compliance picture. Leveraging the power of Rsam’s risk analytics capabilities, customers can combine pass/fail control results collected through the QualysGuard PC scans with criticality of data to be able to identify policy exceptions. Through this integration, companies are able to quickly track non-compliance items, related remediation plans and timeframes, and create dashboards and metrics to gain visibility into the company’s global policy compliance posture.

“The Rsam integration with QualysGuard Policy Compliance provides corporations and government agencies with an automated, accurate solution for a complete view of security risk and compliance across their organizations,” said Philippe Courtot, chairman and CEO for Qualys. “With today’s ever-changing landscape of security threats and regulatory requirements, this will help customers quickly and effectively mitigate possible risks and improve their compliance posture at a cost they can afford.”

Companies have been using the Qualys VM API via Rsam to pull in vulnerability scan results for a clearer view of GRC status. Within the Rsam platform, scan results are depicted in the context of the underlying criticality and risk of the assets, which helps in prioritizing and remediating vulnerabilities effectively. Expanding the capabilities between Rsam and Qualys to IT policy compliance brings together two of the industry’s leading technologies, both of which have received the highest possible rating from Gartner in their respective categories.

“Our customers want sustainable processes to ensure continuous compliance. Stronger integration of our GRC data with QualysGuard PC not only makes this process more sustainable but more automated,” commented Vivek Shivananda, CEO of Rsam. “With Rsam’s risk analytics, workflow and innovate reporting capabilities, our joint customers will now be able to view the policy compliance data in the context of risk and compliance.”

About Rsam
Since 2003, Rsam has been successfully implemented at hundreds of clients across a variety of verticals to effectively identify, assess, manage, and mitigate risks, while providing enterprise-wide visibility, oversight and assurance. Rsam’s modular solutions streamline the risk & compliance process while reduce costs in the areas of: Risk Assessments, Audit Automation, Compliance Management, Incident Management, Issue/Remediation Tracking, Policy Exception Management, Risk Inventory, Vendor Risk Management, and Vulnerability Tracking. Our customers span from large global Fortune 500 organizations to smaller single-site companies looking for out-of-the-box structure and consistency at a reasonable price-point.

About Qualys

Qualys, Inc. is the leading provider of on demand IT security risk andcompliance management solutions – delivered as a service. Qualys’Software-as-a-Service solutions are deployed in a matter of hours anywhere inthe world, providing customers an immediate and continuous view of theirsecurity and compliance postures.

The QualysGuard® service is used today by more than 5,000 organizations in 85countries, including 45 of the Fortune Global 100 and performs more than 500million IP audits per year. Qualys has the largest vulnerability managementdeployment in the world at a Fortune Global 50 company, and has been recognized by leading industry analysts for its market leadership.

Qualys has established strategic agreements with leading managed serviceproviders and consulting organizations including BT, Etisalat, Fujitsu, IBM,I(TS)2, LAC, NTT, SecureWorks, Symantec, Tata Communications and TELUS. Qualys is also a founding member of the Cloud Security Alliance (CSA).

For more information, please visit


Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

For all other matters

Media Contact:
Tami Casey