Qualys Introduces Audit Reports for Regulatory Compliance and Security Best Practices

The Qualys booth at the RSA Conference 2004

Qualys introduced additional reporting and security controls within its QualysGuard Web service to help companies implement security best practices, meet regulatory compliance requirements, and protect against today’s new breed of rapidly propagating viruses and worms such as the recent MyDoom attacks.

When speaking with Help Net Security, Carl Pisacane, the Northwest Regional Sales Manager of Qualys said: “The new features provide a robust and enhanced portability management solution for the enterprise clients”.

With the addition of a two-factor authentication system powered by RSA SecurID, the QualysGuard Web service now offers enterprises an added layer of security to authenticate users and control access to encrypted third-party audit reports, as required by regulatory mandates. These reports are delivered in HTML, XML, and now available in Adobe PDF formats. New report templates also give organizations the ability to manage the most critical vulnerabilities as identified by Qualys’ RV10 (Real-Time Top Ten Vulnerabilities) index, a dynamic list of the most critical and prevalent security vulnerabilities, based on aggregate data from thousands of network scans.

Unlike software-based vulnerability management solutions that require significant installation and maintenance, Qualys’ Web service enables companies to quickly and easily audit large, distributed networks on a continuous basis. The service provides a secure, unalterable audit trail that records the discovery, management and remediation of security vulnerabilities.