Qualys, Risk Scoring and Automated Improvement Workflows

Qualys VMDR with TruRisk
Qualys VMDR with TruRisk

Qualys Introduces VMDR 2.0 with TruRisk™ Including Risk Scoring and Automated Remediation Workflows.

New features on the platform provide security, cloud, and IT teams with insights into risk situations as well as easy-to-use drag-and-drop orchestrations to prioritize and quickly respond to the most critical threats.

FOSTER CITY, Calif. June 2022 – Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading manufacturer of innovative cloud-based IT, security and compliance solutions, today announced VMDR 2.0, its Qualys Vulnerability Management, Detection and Response application. The new cloud-based solution provides visibility into organizations' risk stance, as well as the ability to use drag-and-drop workflows for automated actions and interventions.

The doubling of the number of announced security vulnerabilities in the last five years, the shortening of the time it takes for security vulnerabilities to be used for attack purposes, and the shortcomings in the number of resources working in the field of cyber security have brought the teams to the point of manually identifying and editing numerous vulnerabilities, which it is not possible to fix, by manual methods. Security and IT teams need a systematic approach to reduce risk in their environments, such as prioritizing the most critical vulnerabilities.

Qualys VMDR 2.0 provides the features security and IT teams need to focus on vulnerabilities that will truly reduce risk. Customers using Qualys VMDR 2.0 during the trial period prioritized an average of 2,6% fewer critical vulnerabilities over a sample of 74 million assets and 28 million findings when the TruRisk feature was enabled. At the same time, they were able to reduce risk by an average of 23%, and in some cases as much as 50%.

“Cyber ​​risk is becoming part of the business risk equation. Even the most advanced organizations can't patch all the threats they've uncovered, including an increasing number of inadequate and misconfigured services," said Michelle Abraham, IDC research director. “Organizations need to prioritize work that will maximize risk. Qualys' approach to cyber risk management takes into account multiple factors such as vulnerabilities and misconfigured systems, allowing organizations to focus on fixes that reduce their overall risk.”

Qualys' VMDR TruRisk provides risk-based vulnerability management by providing insights into their unique risk postures so that enterprises can prioritize the most critical vulnerabilities in complex and hybrid environments. Solution; It enables security and IT teams to increase efficiency and save time by creating drag-and-drop workflows to automate time-consuming vulnerability operation processes, including evaluation of temporary cloud assets, alerts and prioritization.

Customer Stories

“Qualys VMDR TruRisk has helped us improve our security program by providing additional context and features for threat and risk, helping us more easily identify high-risk vulnerabilities, some of which the common vulnerability scoring system (CVSS) previously assigned low or medium severity. It has been instructive for us to see that some of the assets identified as having the highest risk to our organization are not always identified quickly. The transparency of the scoring system also made it easier to justify priorities, ensuring that all relevant security and IT stakeholders were aligned and acted quickly to address the risk,” said Brian Penn, director of Security Posture with Aflac.

“The sheer number of penetration testing attempts our security teams face each week is daunting, and prioritizing the most critical takes constant effort,” said Elie Abouzeid, vice president of Information Security for DentaQuest. “Qualys TruRisk helps us focus on the vulnerabilities most at risk and provides actionable ideas to address them first. In addition to risk scores, ServiceNow ITSM integration enables our teams to assign calls, monitor call status and make necessary corrections under a single integrated view from evaluation to solution.”

Qualys VMDR with TruRisk 2.0

Qualys VMDR TruRisk enables Security and IT teams to:

Reducing Risk with Holistic Scoring – Quantify risk across the entire attack surface, including vulnerabilities, misconfigurations and digital certificates, business criticality level, and leverage of intelligence from hundreds of sources, including Shodan's attack surface data. Qualys VMDR TruRisk; If compensatory controls are in place, it automatically prioritizes vulnerabilities, tracks mitigation trends over time, and helps organizations measure and report on the effectiveness of their cybersecurity programs across hybrid and complex environments.

Quickly Fix the Problem at Scale – Automatically assign calls using dynamic vulnerability tagging, along with rules-based integration between VMDR and ITSM tools such as ServiceNow and JIRA to prioritize vulnerabilities and bridge security and IT teams. Editing remediation actions directly on the ITSM solution to close security vulnerabilities in a shorter time and shorten the average remediation time.

Receiving Preventive Attack Alerts – External threat intelligence from over 180.000 vulnerabilities and over 25 threat and vulnerability intelligence sources is linked locally with vulnerabilities and misconfigurations, sending advance warnings to teams of vulnerabilities used by malware or in a campaign targeting your industry .

Automating Operations Workflows – Teams save time and resources with Qualys Qflow technology. They can create drag-and-drop visual workflows to automate time-consuming and complex vulnerability management tasks such as vulnerability assessments for temporary cloud assets, alerting for high-profile threats, or quarantining high-risk assets.

“In today's time of increasing attacks and the importance of cyber resilience at the board level, it is more important than ever to effectively manage cyber risk,” said Sumedh Thakar, president and CEO of Qualys. “With VMDR 1.0, we've innovated by moving the four key elements of vulnerability management into a seamless workflow to help organizations respond faster to threats. We are changing the rules of the game again with VMDR 2.0. We enable organizations to initiate remediation workflows for vulnerability management tasks, prioritize remediation to critical issues that mitigate risk, and streamline responses and integrations by integrating with ITSM solutions such as ServiceNow.”

Qualys VMDR with TruRisk will be available at the end of June. To request a free trial https://qualys.com/tryvmdr Visit the address. You can learn more by reading our Qualys VMDR 2.0 demo blog.

Additional Resources
• Learn about VMDR 2.0 with TruRisk
• Read the VMDR 2.0 demo blog
• Details of Qualys Cloud Platform
• Follow Qualys on LinkedIn and Twitter

About Qualys
Qualys, Inc. (NASDAQ: QLYS) is a leading provider of innovative security, compliance and IT solutions with more than 100 subscribed customers worldwide, including the majority of the Forbes Global 100 and Fortune 20.000. Qualys; It helps organizations aggregate and automate security and compliance solutions on a single platform for greater agility, better business outcomes, and significant cost savings.
Qualys Cloud Platform; Leverages a single agent to continually deliver critical security intelligence while helping companies automate the full scope of vulnerability detection, compliance, and protection for IT systems, workloads, and web applications on-premises, endpoints, servers, public and private clouds, and mobile devices. Founded in 1999 as one of the first SaaS security companies, Qualys has strategic partners and provides vulnerability management capabilities, security solutions from leading managed service providers and global consulting organizations, as well as cloud service providers including Amazon Web Services, Google Cloud Platform and Microsoft Azure. seamlessly integrated with For more information please https://www.qualys.com Visit

Qualys, Qualys VMDR® and the Qualys logo are trademarks of Qualys, Inc. are private trademarks of the company. All other products and names may be trademarks of their respective companies.

Günceleme: 04/07/2022 17:23

Similar Ads

Be the first to comment

your comment