Redwood City, CA - April 23, 2007 - Qualys, Inc., the leading provider of on demand security risk and compliance management solutions, today announced a strategic alliance with RSA, The Security Division of EMC, to help customers better address the 12 core requirements of the Payment Card Industry Data Security Standard (PCI DSS) by leveraging QualysGuard PCI in conjunction with RSA enVision™ – a core element of the broader RSA PCI Solution portfolio. The collaboration provides RSA and Qualys customers with the ability to correlate network risk and vulnerability data identified by QualysGuard with information collected by RSA’s compliance and security information management solution.
Any organization accepting credit card payments must comply with the standards outlined by PCI. Recent data breaches and subsequent enforcement of PCI DSS fines have reinforced the importance of outlining and meeting data security standards in accordance with the PCI mandates. The alliance with RSA builds on significant adoption of QualysGuard PCI, currently in use at organizations such as the Humane Society and Houghton Mifflin Company, one of the leading educational publishers in the United States.
“As a non-profit organization, we rely on donations to fund our animal rescue and protection programs, therefore it is imperative that our donors trust us and know their information is secure,” said Beverly Magda, CIO of the Humane Society. “Before using QualysGuard PCI, we had a labor intensive process that included scheduling time for a quarterly scan, and then physically shipping the audit report to banks. With Qualys’ solution in place, the audits are scheduled automatically, and banks are notified so they can immediately log on to the Web and download the reports, saving us a lot of time and resources.”
Built on Qualys’ well-known, highly accurate and non-intrusive on demand scanning technology, QualysGuard PCI streamlines and simplifies PCI compliance by providing an easy-to-use, on demand compliance dashboard that leads organizations through each major step in the certification process. Additionally, QualysGuard PCI gives partners the tools they need to quickly and accurately evaluate the security of a merchant’s entire network and then prioritize remediation efforts based on the risk the vulnerabilities pose to the organization’s PCI compliance posture. Nearly 50 percent of all PCI DSS Approved Scanning Vendors (ASVs) and Qualified Security Assessors (QSAs) utilize QualysGuard to deliver PCI certification and PCI-related services to their clients.
RSA enVision provides an enterprise-wide platform for collecting, correlating and analyzing security and compliance information across the organization, and supports efforts to track and monitor access to network resources and cardholder data. Together, Qualys and RSA’s solutions provide a comprehensive PCI process that enables organizations to establish PCI compliance best practices.
“Ensuring PCI compliance does not have to be complicated,” said Philippe Courtot, CEO and chairman of Qualys. “The QualysGuard PCI platform combines the industry’s most accurate scanning technology with a lightweight interface. The intuitive dashboard provides merchants and service providers with step-by-step guidance through PCI certification, and helps them meet specific requirements more effectively.”
“The RSA PCI Solutions portfolio is designed to enable merchants to effectively discover and manage credit card information; secure that data, as well as access to the data and related technology systems; and then respond to audits and potential security threats” said Steve Preston, senior director, Solutions Marketing, RSA, The Security Division of EMC. “The QualysGuard PCI platform, along with the RSA PCI Solutions portfolio, ensures that we are helping our customers move from a reactive to proactive stance in order to address compliance with the PCI Data Security Standard.”
Qualys, Inc. is the leading provider of on demand security risk and compliance management solutions. Qualys is the only security company that delivers these solutions through a single Software-as-a-Service platform. QualysGuard allows organizations to strengthen the security of their networks and conduct automated security audits to ensure compliance with policies and regulations. As a scalable and open platform, QualysGuard enables partners to broaden their managed security offerings and expand their consulting services. Qualys’ on demand solutions are deployed in a matter of hours anywhere in the world, providing customers an immediate view of their security and compliance posture. QualysGuard is the widest deployed security on demand solution in the world, performing over 150 million IP audits per year. For more information, please visit www.qualys.com.
Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.