Symantec Incorporates Qualys Vulnerability Intelligence into Symantec Security Management System 2.0

Redwood Shores, CA – December 8, 2004 – Qualys, Inc., the leading provider of on demand vulnerability management solutions, today announced that information from QualysGuard Enterprise will be further integrated with the Symantec Enterprise Security Management System (SSMS) 2.0. Customers will now be able to aggregate and correlate QualysGuard vulnerability data with security event information from the latest version of the Symantec Security Management System.

“Aggregating security event data within a management system is important for monitoring complex systems, but correlating that data to gain additional intelligence about our security is invaluable,” said Georg Petzl, IT-Security Manager at T-Mobile, a customer of Qualys and Symantec. “Applying vulnerability information from QualysGuard against other security event data within the Symantec system helps us more accurately identify threats.”

Event correlation increases the accuracy of detecting attacks, intrusions and network misuse by monitoring and comparing information from multiple security products, such as firewall logs or IDS alerts, with the system and vulnerability status of a network. The result for customers is more effective threat identification, containment and remediation.

“The correlation of event data across multiple vendors and multiple technologies in the security industry is a top requirement for enterprise customers. There’s simply too much room for error in the gaps left between security products,” said Amrit Williams, Research Director at Gartner. “Increased interoperability across security products helps customers achieve a stronger security infrastructure and further leverage their security investments.”

The newly released Symantec Universal Event Collector integration toolkit allowed Qualys to easily integrate security data into the Symantec Security Management System. Each partner integration contributes to the overall security and availability of customer enterprise information by enabling the aggregation and normalization of security events for rapid analysis and remediation of impending threats by security administrators.

“Qualys’ on demand vulnerability management solution is already globally deployed at many Fortune 500 companies, which ties in very well with the enterprise-wide capabilities of the Symantec Security Management System,” said Rowan Trollope, vice president, security management solutions, Symantec.

Qualys worked closely with Symantec to develop the Qualys Event Collector for use within the Symantec Security Management System. This Collector automatically logs vulnerability assessment data, displays high-level vulnerability details, and allows the users to author correlation rules that correlate that data with additional security event information in the Symantec Security Management System.

Availability

The Symantec Security Management System components are currently available through Symantec’s worldwide network of value-added authorized resellers, distributors and systems integrators. Organizations can be connected with Symantec resellers or distributors in their areas by visiting the Symantec Solution Provider locator at http://locator.symantec.com/.

The QualysGuard Collector is bundled with QualysGuard Enterprise and is available immediately at no additional charge to Qualys’ enterprise customers that wish to integrate QualysGuard Enterprise data with the Symantec Security Management System.

About Qualys

Qualys is the leader in on demand vulnerability management. The company allows organizations of all sizes to effectively secure their networks, conduct automated security audits, and ensure compliance. Qualys automates the process of proactively identifying and remediating security vulnerabilities, and provides the quickest route to neutralize worms and other emerging threats according to their relative business impact. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organizations. Thousands of customers rely on Qualys, including DuPont, Hershey Foods, Hewlett-Packard, Standard Chartered Bank and many others. Qualys is headquartered in Redwood Shores, Calif., with European offices in France, Germany and the U.K., and Asian offices in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.