Cloud Platform
Contact us
Asset Management
Vulnerability & Configuration Management
Risk Remediation
Threat Detection & Response
  • Overview
  • Platform Apps

  • Qualys Endpoint Security

    Advanced endpoint threat protection, improved threat context, and alert prioritization

  • Context XDR

    Extend detection and response beyond the endpoint to the enterprise

Cloud Security

Qualys Recertifies Its Cloud Computing FDCC Auditing Service

QualysGuard Streamlines the Process of Meeting Federal Desktop Core Configuration Compliance and US Government Configuration Baselines (USGCB) at an Agency-Wide Level

Redwood City, Calif. - June 7, 2011 - Qualys®, Inc., the leading provider of Software-as-a-Service (SaaS) IT security risk and compliance management solutions, today announced that QualysGuard is recertified for FDCC compliance by the National Institute of Standards and Technology (NIST) as conforming to the Security Content Automation Protocol (SCAP) and its component standards. The QualysGuard FDCC service allows federal agencies to scan – even across large, distributed and operationally diverse networks – and report FDCC compliance with an easy-to-use, centralized, integrated solution, at a low cost.

Federal government agencies are required to standardize and certify their existing Windows XP and Windows Vista desktops according to FDCC specifications as mandated by the US Office of Management and Budget (OMB). The QualysGuard FDCC service leverages the SaaS architecture to support FDCC scanning for internal systems on a global scale to help federal agencies standardize and certify their existing Windows XP and Windows Vista desktops with the FDCC requirements.

“One of the best ways for government agencies to avoid security incidents is to make sure that all PCs and servers are running on secure configurations,” said John Pescatore, VP and distinguished analyst at Gartner Inc. “Vulnerability management processes that continually detect deviance from FDCC and USGCB to support rapid remediation are key to effective security configuration management.”

FDCC compliance requires a thorough analysis of all desktop environments. The QualysGuard FDCC service is a scalable solution that provides the automation to accomplish this task efficiently and cost effectively agency-wide,” said Philippe Courtot, chairman and CEO of Qualys.

The QualysGuard FDCC service:

  • Supports SCAP content for Windows XP, Windows XP Firewall, Windows Vista, Windows Vista Firewall, Internet Explorer 7, as well as USGCB content for Windows 7, Windows 7 Firewall, and Internet Explorer 8
  • Utilizes FDCC and USGCB checklists from NIST including updated published SCAP content
  • Certifies compliance with FDCC requirements with detailed reports that include technical analysis of compliance and executive-level summaries
  • Provides complete coverage of all agency assets allowing for a complete picture of compliance rather than a statistical sample
  • Scales to scan very large, distributed and operationally diverse, networks

To learn more, read the Technology Blog in the Qualys Community.

About Qualys

Qualys, Inc. is the leading provider of Software-as-a-Service (SaaS) IT security risk and compliance management solutions. Qualys solutions are deployed in a matter of hours anywhere in the world, providing customers an immediate and continuous view of their security and compliance postures.

The QualysGuard® service is used today by more than 5,000 organizations in 85 countries, including 47 of the Fortune Global 100, and performs more than 500 million IP audits per year. Qualys has the largest vulnerability management deployment in the world at a Fortune Global 50 company, and has been recognized by leading industry analysts for its market leadership.

Qualys has established strategic agreements with leading managed service providers and consulting organizations including BT, Etisalat, Fujitsu, IBM, I(TS)2, LAC, NTT, SecureWorks, Symantec, Tata Communications and TELUS. Qualys is a founding member of the Cloud Security Alliance (CSA).

For more information, please visit


Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

For all other matters

Media Contact:
Tami Casey