Qualys
Qualys, Inc. is a leading provider of disruptive cloud-based security, compliance and IT solutions helping organizations measure communicate and eliminate cyber risk. Over 10,000 subscription customers worldwide, including most of the Forbes Global 100 and Fortune 100, utilize the Qualys Enterprise TruRisk Platform. This platform enables companies to streamline and automate their security and compliance processes into a single, comprehensive view, resulting in increased agility, improved business outcomes, and significant cost savings.
Measure, Communicate, and Eliminate Cyber Risk
The Qualys Enterprise TruRiskTM Platform
is the all-in-one, enterprise-grade cyber risk management tool that provides a unified view of risk by leveraging TruRisk, the industry standard, risk-based threat detection and prioritization metric.
Measure
Calculate the known and unknown cyber risk across your internal and external attack surface and quantify it in a way that meets the unique demands of your business.
Communicate
Go beyond just enumerating your cyber risk with the ability to clearly define it and articulate your complete cyber risk posture throughout your organization.
Eliminate
Proactively eliminate the most critical vulnerabilities within your environment with easy-to-use workflows that unify your Security and IT teams.
Qualys Enterprise TruRisk Platform Apps and Solutions
The Enterprise TruRisk Platform is the only natively developed cyber risk management platform that includes everything from attack surface management (ASM), vulnerability management (VM), patch management, endpoint security, cloud security and more— all with the click of the mouse.
Asset Management
CyberSecurity Asset Management (CSAM)
Gain continuous visibility across cloud, multi-cloud, on-premises, and IT/OT/IoT attack surfaces, keep your CMDB up-to-date, and integrate asset management with ITSM tooling with the most versatile asset discovery solution available.
External Attack Surface Management (EASM)
Extend visibility to external, internetfacing assets with EASM (included in CSAM). Add risk factors such as EoL/EoS software, missing agents and security tools, unsanctioned ports, and expired SSL certs to TruRisk Scoring to prioritize and eliminate business risk.
Vulnerability & Configuration Management
Vulnerability Management, Detection & Response (VMDR)
Decrease your mean-time-to-detect (MTTD) and mean-time-to-remediate (MTTR) with the world’s most powerful risk-based vulnerability management solution. Automatically identify assets with risk context, detect vulnerabilities in real-time, and integrate vulnerability management with patch management, cloud security, and more.
Enterprise TruRisk Management (ETM)
Enterprise TruRisk Management (ETM) translates cyber risk to business risk by extending the reach of the Enterprise TruRisk Platform by ingesting data from third-party security and IT tools, as well as external vulnerability findings into the Qualys ecosystem for contextinformed insights and value-atrisk (VAR) risk quantification.
Web Application Scanning (WAS)
Web Application Scanning (WAS) uncovers runtime vulnerabilities, OWASP Top 10, misconfigurations, PII exposures, web malware and more in modern web applications and APIs, natively integrated with VMDR and rest of the Enterprise TruRisk Platform.
Cloud Workload Protection with TotalCloud™
Qualys Cloud Workload Protection (CWP), included in Qualys TotalCloud, eliminates blind spots other cloud security solutions miss by collapsing attack path analysis tasks with continuous, dynamic scanning via FlexScan™ and risk-based vulnerability prioritization via TruRisk Insights.
Threat Detection & Response
Vulnerability Management, Detection & Response (VMDR)
Decrease your mean-time-to-detect (MTTD) and mean-time-to-remediate (MTTR) with the world’s most powerful risk-based vulnerability management solution. Automatically identify assets with risk context, detect vulnerabilities in real-time, and integrate vulnerability management with patch management, cloud security, and more.
Enterprise TruRisk Management (ETM)
Enterprise TruRisk Management (ETM) translates cyber risk to business risk by extending the reach of the Enterprise TruRisk Platform by ingesting data from third-party security and IT tools, as well as external vulnerability findings into the Qualys ecosystem for contextinformed insights and value-atrisk (VAR) risk quantification.
Cloud Security
TotalCloud™ CNAPP
TotalCloud is the Qualys cloudnative application protection platform (CNAPP), which provides customers with a flexible modulated offering of Cloud Security Posture Management (CSPM), SaaS Security Posture Management (SSPM), Cloud Workflow Protection (CWP), Cloud Detection and Response (CDR), and comprehensive Container Security (KCS and CS), TruRisk Remediate (Qualys Patch Management) TruRisk Remediate with Qualys Patch Management (PM) is a natively integrated patch management solution that allows security and IT to improve patch rates by 90% with smart automation and close tickets up to 60% faster with bidirectional integrations with CMDB and ITSM tools. Custom Assessment and Remediation (CAR) Custom Assessment and Remediation (CAR) provides custom scripts and QIDs to detect and remediate risks according to unique business needs, including first-party applications and embedded OSS. Build custom detection logic using a wide range of popular scripting languages, including PowerShell. VMDR TruRisk FixIt Combine VMDR and Patch Management obtain enterprise vulnerability management, remediation delivered in one, easy to use license ideal for small business and mid-sized enterprises. all natively integrated with the Qualys Enterprise TruRisk Platform. Stop leaving your organization exposed to risk with cloud-only security solutions that silo DevOps and SecOps workflows. Eliminate the blind spots that other cloud security solutions miss and empowers users with a unified and actionable view of vulnerability and asset risk across SaaS and multi-cloud.
Risk Remediation
TruRisk Remediate (Qualys Patch Management)
TruRisk Remediate with Qualys Patch Management (PM) is a natively integrated patch management solution that allows security and IT to improve patch rates by 90% with smart automation and close tickets up to 60% faster with bidirectional integrations with CMDB and ITSM tools.
Custom Assessment and Remediation (CAR)
Custom Assessment and Remediation (CAR) provides custom scripts and QIDs to detect and remediate risks according to unique business needs, including first-party applications and embedded OSS. Build custom detection logic using a wide range of popular scripting languages, including PowerShell.
VMDR TruRisk FixIt
Combine VMDR and Patch Management obtain enterprise vulnerability management, remediation delivered in one, easy to use license ideal for small business and mid-sized enterprises.
Compliance
Policy Compliance (PC) and File Integrity Management (FIM) Reduce false-positive alerts by up to 90% and boost compliance with coverage of 1,000 policies, 22,000 controls, 400 technologies, and 100 regulations.