Cyber security integration partners.

HP TippingPoint network security solutions deliver actionable threat intelligence to protect against zero day vulnerabilities, unknown threats and targeted attacks in real time with virtual patching from Digital Vaccine^® Labs (DVLabs); unparalleled visibility and analytics to provide the insight and context needed to drive informed security decisions; and operational simplicity through flexible physical and virtual deployment options that are easy to set up and manage with out-of-the-box recommended settings to provide immediate and ongoing threat protection.

HP TippingPoint’s Enterprise Vulnerability Remediation (eVR) feature enhances customers’ visibility into their networks so they can take immediate action on the vulnerabilities in their network. Qualys customers who leverage TippingPoint solutions can import vulnerability scan results into the TippingPoint Security Management System (SMS) to correlate the CVEs from the scan to the CVEs of the TippingPoint Digital Vaccine filters. Customers will receive policy adjustment recommendations tuned against their specific deployment that will reduce administration time, increase security coverage, reduce unnecessary notifications and provide a big picture view into their overall security posture.

Sourcefire, Inc. (Nasdaq:FIRE), is a world leader in cybersecurity. Sourcefire is transforming the way Global 2000 organizations and government agencies manage and minimize network security risk. Sourcefire’s IPS and real-time adaptive security solutions provide security for the real world of dynamic networks and escalating threats.

Today, the names Sourcefire and Snort^® have grown synonymous with innovation and cybersecurity.

The award-winning Sourcefire 3D^® System is a Real-time Adaptive Security solution that leverages Snort, the de facto standard for intrusion detection and prevention (IDS/IPS). One of the core components of the 3D System is Sourcefire RNA^® (Real-time Network Awareness). RNA passively aggregates network intelligence and presents a real-time inventory of operating systems, applications, and potential vulnerabilities on the network. The 3D System imports Qualys scan data into the RNA host database, providing a unique combination of “always-on” passive discovery and accurate vulnerability scanning. Users can quickly determine if a host is vulnerable to a given exploit, saving valuable analysis time. The 3D System can automatically initiate a Qualys scan whenever it detects a new host or application, minimizing the risk that hosts with critical vulnerabilities are connected with the network.

Agiliance is the leading independent provider of Integrated Risk Management solutions for Governance and Security programs. Agiliance RiskVision is automating how Global 2000 companies and government agencies achieve continuous monitoring of big data across financial, operations, and IT domains to orchestrate incident, threat, and vulnerability actions in real time. Its real-time risk analysis optimizes business performance and enables better investment decisions.

The Agiliance and Qualys joint solution combines vulnerability and asset data from Qualys with RiskVision’s real-time business and security data to provide customers with an always-on, always-current view of their security risk postures. This gives security response teams instant feedback on remediation effectiveness to more efficiently meet stringent security policies and regulatory compliance mandates.

Allgress provides affordable software and professional services that enhance an organization’s ability to see clearly the relationship between IT security and risk to the organization.

Our products and services allow CIOs and CISOs to better plan, analyze, manage, and communicate IT security, and to help business managers better understand the business risk inherent in every security decision as well as the security implications in every business decision. Privately held, Allgress was founded in 2006 and is headquartered in Livermore, California.

Allgress extends Qualys functionality to help customers visualize the balance between information security strategy and corporate goals. With Allgress’ interactive reporting capabilities and automated workflows, Qualys users can manage the information they need to make strategic security decisions.

LockPath addresses the increasingly complex issues of regulatory compliance and risk management in a simple, cost effective way. Its innovative software correlates security information from multiple data sources with current regulations and policies to gauge risk and provide actionable insight.

MetricStream is a market leader in Enterprise wide Governance, Risk and Compliance (GRC) Solutions used by global corporations like Pfizer, Philips, NASDAQ, UBS, SanDisk, Fairchild Semiconductor, Constellation Energy, Cummins and several others.

MetricStream IT-GRC Solution integrates with Qualys Vulnerability Management (VM) provides a single robust framework to automatically monitor and capture all asset and network vulnerabilities, and route them through a systematic process of investigation and remediation.

The MetricStream solution has been integrated with Qualys VM through MetricStream’s intelligent connectors, or Infolets, which also enable seamless integration with SIEM, Log Management, Problem Management, Operations and Asset Management systems.

MetricStream GRC Platform is empowering customers to facilitate a holistic and sustainable top-down, risk driven intelligence by integrating Business, Security and IT-GRC on a common architecture.

Modulo is a market leader for IT Governance, Risk and Compliance management (ITGRC). Modulo Risk Manager^™ provides organizations with the tools they need to automate the processes required for assessing security and attaining regulatory compliance. Modulo partnered with Qualys to integrate Modulo Risk Manager with Qualys.

The combined offering provides global companies with a comprehensive security risk and compliance management solution.

The Modulo Risk Manager software automatically receives vulnerabilities and misconfiguration data collected through Qualys scans. This data is aggregated in the Modulo Risk Manager allowing users to easily view the data, providing better tracking, risk assessment and compliance documentation.

RSA Archer Technologies is a leading provider of automated enterprise risk and compliance management solutions. Archer leverages the Qualys API to import detailed scan reports into the Archer Threat Management solution.

This allows clients to link Qualys scans with other business-critical data such as vulnerability information from threat feeds (VeriSign^® iDefense^®, Symantec^™ and Cisco^®), asset information from the Archer Asset Management solution, and policies and authoritative sources from the Archer Policy Management solution. By linking this information within Archer, clients can reduce enterprise risks, manage and demonstrate compliance, automate business processes, and gain visibility into corporate risk and security controls.

About Reciprocity
Reciprocity is organizing the world of information security by empowering trusted relationships between systems, people and partners. Its leading platform, ZenGRC, provides organizations with a modern approach to managing infosec risk and compliance. Founded in 2009, Reciprocity has reimagined traditional bulky, legacy-GRC software. The company is recognized for its hassle-free implementation, intuitive design and forward-thinking technology solutions that move risk and compliance from a cost-center to a value-creator for organizations.The company is headquartered in San Francisco with global offices in Ljubljana, Slovenia and Buenos Aires, Argentina. Learn more at: www.reciprocitylabs.com

ZenGRC and Qualys
ZenGRC’s pre-built connector with Qualys enables a streamlined audit workflow with automatic evidence collection on specific controls, like vulnerability management programs. The integration allows auditors to collect Qualys evidence data instantaneously and without reliance on other resources. Through out-of-the-box integrations to popular third-party business and infosec apps, like Qualys, ZenGRC becomes a central IT GRC platform for your organization’s entire information ecosystem. For more information visit: www.reciprocitylabs.com/zenconnect

About ZenGRC
ZenGRC is a modern, cloud-based, information security risk and compliance management software platform. Its hassle-free implementation, intuitive design and scalable packaging has made ZenGRC the leading GRC platform for mid-market and large enterprises alike. Key features include automated evidence collection and control tracking, customized risk assessment and object mapping, and real-time reporting dashboards.

Rsam is a leading provider of Governance, Risk and Compliance (GRC) solutions that seamlessly integrates business criticality, regulatory assessment data, vulnerabilities and findings to deliver enterprise-wide visibility, oversight and assurance. Rsam integrates with both Qualys VM and Qualys PC products.

Joint customers leverage Qualys VM via Rsam to pull in vulnerability scan results for a clearer view of GRC status. Pulling in Qualys PC data enables customers to measure compliance checks results against a broader risk and compliance picture.

Through this integration customers are able to quickly track vulnerabilities, non-compliance items, related remediation plans and timeframes, and create dashboards and metrics in Rsam to gain visibility into the company’s global risk and compliance posture.

As the leading pioneer in cloud-based information security solutions, TraceSecurity provides risk management and compliance solutions for organizations that need to protect critical data or meet IT security mandates. With a unique combination of people, processes and technology, TraceSecurity gives decision makers a holistic view of their security posture and enables them to achieve effective data protection and automatic compliance.

TraceSecurity’s award-winning solution, TraceCSO, enables Qualys users to manage their vulnerability scan results within TraceCSO’s centralized interface and then use that data throughout TraceCSO’s risk management, IT auditing and GRC solutions. By streamlining and assuring effective IT GRC management, TraceSecurity dramatically reduces the complexities of every-changing threats and technology — and empowers organizations to better pursue their strategic objectives.

Qualys CMDB Sync synchronizes Qualys IT asset discovery and classification with the ServiceNow Configuration Management Database (CMDB) system.

Qualys CMDB Sync automatically updates the ServiceNow CMDB with any assets discovered by Qualys and with up-to-date information on existing assets, giving ServiceNow users full visibility of their global IT assets on a continuous basis. Conversely, if an asset is added to the ServiceNow CMDB, Qualys CMDB Sync will add it to the Qualys asset inventory. For assets that exist in both asset repositories, selected metadata can be synchronized.

With a service‑orientation toward the activities, tasks and processes that make up day‑to‑day work life, ServiceNow helps the modern enterprise operate faster and be more scalable. Customers use ServiceNow to define, structure and automate the flow of work, removing dependencies on email and spreadsheets to transform the delivery and management of services for the enterprise.

Core Security
CORE IMPACT is the first automated, comprehensive penetration testing product for assessing specific information security threats to an organization. Qualys’ integration with CoreImpact automatically imports vulnerability assessment results into the CORE IMPACT management console.

The integration reduces the amount of time security consulting organizations and corporations spend collecting data from vulnerability scans and performing penetration testing, while lowering costs and making the remediation process more effective.

Immunity CANVAS is the industry’s premier penetration testing platform for security professionals. The Immunity-DSquare Security package leverages Immunity’s world renowned exploit development techniques along with the cutting edge exploit plug-ins from DSquare Security.

Immunity and DSquare Security integrate seamlessly with your Qualys experience to provide you with unparalleled situational awareness of penetration testing targets. Using the combination of the CANVAS platform with world class exploit developer partnerships will empower your security team to provide you both a productive and accurate pentesting solution.

BeyondTrust PowerBroker Password Safe is an automated password and session management solution that provides secure access control, auditing, alerting and recording for any privileged account — such as a local or domain shared administrator account; a user’s personal admin account; service, operating system, network device, database (A2DB) and application (A2A) accounts; and even SSH keys, cloud and social media. By improving the accountability and control over privileged passwords, IT organizations can reduce security risks and achieve compliance objectives.

CA Technologies provides IT management solutions that help customers manage and secure complex IT environments to support agile business services.

CA ControlMinder provides organizations with powerful control over privileged users, reducing the risk of compliance failures or a costly security breach. CA ControlMinder is a comprehensive and mature solution that provides both broad and deep capabilities that include fine-grained user access controls, shared account management for privileged user passwords, UNIX to Active Directory authentication bridging, and user activity reporting.

CA ControlMinder allows enterprises to deploy granular policies on multiple platforms, devices and applications, providing the security and tracking required to secure your critical systems while meeting various compliance requirements, all from a single management console.

The Qualys integration with CyberArk Application Identity Manager simplifies credentials management within Qualys Suite for authenticated scanning. Joint customers no longer need to store and manage their passwords, private keys and certificates within Qualys to perform authenticated scans. This significantly reduces the complexity of credential management because credentials are centrally managed in CyberArk Secure Digital Vault™. Organizations can change passwords, rotate private keys and certificates at will or use a CyberArk policy to automate these changes, removing the need to update passwords, private keys and certificates within the Qualys platform manually.

Hitachi ID Systems offers comprehensive identity and access management, privileged access management and password management solutions.

Hitachi ID Privileged Access Manager is a system for securing access to privileged accounts. It works by regularly randomizing privileged passwords on workstations, servers, network devices and applications. Random passwords are encrypted and stored on at least two replicated credential vaults.

Password changes and access disclosure are closely controlled and audited, to satisfy policy and regulatory requirements.

Lieberman Software pioneered the privileged identity management space by releasing the first product to this market in 2001. Since then, the company has regularly updated and expanded its privileged password management solution set while growing its customer base in this vibrant and emerging market.

Enterprise Random Password Manager (ERPM) is the first privileged identity management product that automatically discovers, secures, tracks and audits the privileged account passwords in the cross-platform enterprise.

It provides the accountability of showing precisely who had access to sensitive data, at what time and for what stated purpose. By doing so, ERPM helps prevent unauthorized, anonymous access to an organization’s most crucial proprietary data.

Quest is a global software company offering a broad and deep selection of products that target common IT challenges. More than 100,000 worldwide customers enjoy the simplicity of working with a single vendor who can solve so many IT management pains.

Quest One Privileged Password Manager automates, controls and secures the entire process of granting administrators the credentials necessary to perform their duties. Qualys scanner appliances can retrieve the required password for trusted scans from Privileged Password Manager to ensure that access is granted according to established policy, with appropriate approvals and that all actions are fully audited and tracked.

Thycotic Software, founded in 1996, is headquartered in Washington, DC, USA and provides secure enterprise password management solutions. Over 30,000 IT admins worldwide trust Thycotic products to manage their passwords.

With Thycotic’s Secret Server, an on-premise web-based vault for storing privileged passwords like Windows local administrator passwords, UNIX root passwords and service account passwords, Qualys users benefit from an additional layer of protection and tighter control over their critical passwords. Passwords for Qualys authenticated scans are be stored in the Secret Server Password repository and never leave the user’s perimeter. Users can also leverage Secret Server’s ability to log credential usage, restrict access, and periodically rotate credentials to ensure compliance with corporate policies and regulatory requirements.

A software company providing cyber security solutions, WALLIX Group is a European specialist in privileged account governance.

In response to recent regulatory change (NIS/GDPR in Europe and OVIs in France) and the cyber security threats affecting all companies today, Bastion helps users protect their critical IT assets: data, servers, terminals and connected objects. It is the first market solution to have been awarded first-level security certification (CSPN) by France’s National Cybersecurity Agency (ANSSI) and thus meet all of the criteria for regulatory compliance

WALLIX accompanies more than 570 companies and organizations on a day-to-day basis, securing the access to more than 200,000 hardware and software resources. Its solutions are marketed through a network of more than 130 resellers and trained and accredited integrators. Listed on Euronext under the code ALLIX, WALLIX Group is a leader on the PAM market with a strong presence throughout Europe and EMEA. Alain Afflelou, Dassault Aviation, Gulf Air, Maroc Telecom, McDonald’s, Michelin, and PSA Peugeot-Citroën trust WALLIX to secure their information systems.

WALLIX Bastion was a winner at the 2016 Computing Security Awards and has been rated Best Buy by SC Magazine, as well as being named among the PAM leaders in the Product and Innovation categories of the KuppingerCole 2017 Leadership Compass report. The company is a member of Bpifrance Excellence, a champion of the Pôle Systematic Paris Region cluster and a founding member of the Hexatrust grouping of cyber security companies. In 2017, WALLIX Group was included in Forbes France’s Futur40 ranking of fastest-growing listed companies.

Agiliance is the leading independent provider of Integrated Risk Management solutions for Governance and Security programs. Agiliance RiskVision is automating how Global 2000 companies and government agencies achieve continuous monitoring of big data across financial, operations, and IT domains to orchestrate incident, threat, and vulnerability actions in real time. Its real-time risk analysis optimizes business performance and enables better investment decisions.

The Agiliance and Qualys joint solution combines vulnerability and asset data from Qualys with RiskVision’s real-time business and security data to provide customers with an always-on, always-current view of their security risk postures. This gives security response teams instant feedback on remediation effectiveness to more efficiently meet stringent security policies and regulatory compliance mandates.

AlgoSec is the market leader for security policy management, enabling organizations to simplify and automate security operations in evolving data centers and networks. The AlgoSec Security Management Suite integrates with Qualys Vulnerability Management (VM) to aggregate and score vulnerabilities associated with data center applications and their associated physical or virtual servers.

Bay Dynamics^® is the market leader in cyber risk predictive analytics providing actionable visibility into organizations’ cybersecurity blind spots, complete with business risks and threats. The company’s purpose-built Risk Fabric® platform assembles and correlates relevant data from existing tools in a novel patented way to provide actionable cyber risk insights, before it’s too late. Bay Dynamics enables some of the world’s largest organizations to understand the state of their cybersecurity posture, including contextual awareness of what their insiders, vendors and bad actors are doing, which is key to effective cyber risk management.

Bay Dynamics Risk Fabric integration with Qualys enables organizations to effectively manage cyber risk and maintain a healthy cybersecurity posture. Bay Dynamics Risk Fabric Platform with its user behavior and predictive analytics approach, assembles and correlates relevant vulnerability and compliance data from Qualys along with other existing tools to provide actionable insights into cybersecurity blind spots. The integration is seamlessly enabled by an out-of-the-box connector. Bay Dynamics Risk Fabric and Qualys work together to provide visibility into critical threats and help prioritize response based on comprehensive threat visibility.

Brinqa provides enterprises and government agencies with governance, risk management, and compliance solutions that enable the continuous improvement of operational and regulatory efficiencies and effectiveness. Brinqa’s offering provides a centralized, fully automated, and re-usable governance, risk and compliance (GRC) platform combined with targeted applications to meet program specific GRC needs.

Brinqa’s Qualys connector provides a simple mechanism for importing asset, vulnerability and policy compliance data into Brinqa’s Risk Manager. The integrated Brinqa Risk Manager and Qualys Vulnerability Manager solution delivers comprehensive and relevant application risk scoring and automated compliance assurance to your enterprise.

Cisco Rapid Threat Containment uses an open integration of Cisco’s security products, technologies from Cisco security partners, and the network control of the Cisco Identity Services Engine (ISE, which shares details through the Cisco Platform Exchange Grid (pxGrid)).

Under this solution, Qualys Vulnerability Management (VM) integrates with the Threat-Centric NAC feature, which can dynamically change users’ access privileges when their threat or vulnerability scores increase. Specifically, Cisco ISE retrieves Common Vulnerability Scoring System (CVSS) classifications from Qualys Vulnerability Management, allowing graceful manual or automatic changes to a user’s access privileges based on their security score.

Core Security is the leading provider of predictive security intelligence solutions for enterprises and government organizations. Core Security helps more than 1,400 customers worldwide preempt critical security threats throughout their IT environments, and communicate the risk the threats pose to the business. Our patented, proven, award-winning enterprise solutions are backed by more than 15 years of applied expertise from CoreLabs, the company’s innovative security research center.

The CORE Security and Qualys joint solution proactively identifies critical risks in the context of business objectives, operational processes, and regulatory mandates. Security teams can therefore predict threats and effectively communicate their implications to the line of business.

FireMon is the industry leader in providing enterprises, government and managed services providers with advanced security management solutions that deliver deeper visibility and tighter control over their network security infrastructure.

The integrated FireMon solution suite — Security Manager, Policy Planner and Risk Analyzer — enables customers to identify network risk, proactively prevent access to vulnerable assets, clean up firewall policies, automate compliance, strengthen security throughout the organization, and reduce the cost of security operations.

The Qualys integration with ForeScout CounterACT provides joint customers with real-time assessment and mitigation capabilities against vulnerabilities, exposures and violations. The integration helps organizations improve timeliness and efficacy of their vulnerability assessments, automate policy-based mitigation of endpoint security risks, and reduce security exposures and their attack surface.

The integrated ForeScout/Qualys solution can leverage CounterACT’s continuous monitoring capabilities to increase the chances of catching transient devices as they join the network. Once a new device is discovered, information can then be used by Qualys VM to produce more up-to-date and comprehensive vulnerability reports. Additionally, once Qualys Vulnerability Management scans a device, CounterACT then analyzes the scan results, and initiates risk mitigation actions if vulnerabilities are detected.

This integration can be obtained from the ForeScout customer portal as a 3^rd-party plugin within their Vulnerability Assessment Integration Module.

Kenna is a software-as-a-service Vulnerability and Risk Intelligence platform that accurately measures risk and prioritizes remediation efforts before an attacker can exploit an organization’s weaknesses. Kenna automates the correlation of vulnerability data, threat data, and zero-day data, analyzing security vulnerabilities against active Internet breaches so that InfoSec teams can prioritize remediations and report on their overall risk posture.

Kenna supports the Qualys vulnerability management solution right out-of-the-box, making it easy to consume the latest Qualys scan data. Kenna adds real-time context using threat intelligence data sources such as AlienVault OTX^™, Dell CTU, Metasploit, ExploitDB and Verisign iDefense. Contextualizing vulnerabilities with what is happening this minute in the real-world allows you to automatically identify weaknesses based on your unique environment, allowing you to save massive amounts of time in your vulnerability management process.

Kenna groups assets for easy monitoring, measurement and reporting on risk. Dashboard reports can be used to visualize your exposure at-a-glance and track the your risk trend over time. And rather than basing your exposure on vulnerability counts, visualize your trending risk in real time. When everyone in your organization has access to the same view of your risk, communicating and understanding your risk posture is simple.

Kenna also matches available patches with vulnerabilities in your environment and helps you prioritize which remediations will truly make an impact. Find out what to fix first (and why), and make remediation decisions backed by analytical rigor to take meaningful actions.

Remediate vulnerabilities that provide the greatest reduction in risk based on real-world threat intelligence, not just internal weaknesses with Kenna. Know the exact “fix” to give your Development team and confirm proper remediation and prove your actions with data.

The Qualys integration with NopSec Unified VRM changes the vulnerability management dynamic into one that improves team collaboration and operational efficiency, and reduces the risk to your business.

Unified VRM imports Qualys vulnerability scan results and assets configurations on a recurring basis, sanitizes the results, correlates those results with real-time threat intelligence, and transforms the scan data into a rich set of visualizations and workspaces, enabling security teams to harness the power of context-enriched analytics to drive more efficient communication and collaboration with internal cross-functional partners.

RSA Archer Technologies is a leading provider of automated enterprise risk and compliance management solutions. Archer leverages the Qualys API to import detailed scan reports into the Archer Threat Management solution.

This allows clients to link Qualys scans with other business-critical data such as vulnerability information from threat feeds (VeriSign^® iDefense^®, Symantec^™ and Cisco^®), asset information from the Archer Asset Management solution, and policies and authoritative sources from the Archer Policy Management solution. By linking this information within Archer, clients can reduce enterprise risks, manage and demonstrate compliance, automate business processes, and gain visibility into corporate risk and security controls.

Prisma Public Cloud (formerly RedLock) dynamically discovers and continuously monitors cloud resources and sensitive data across AWS, Azure, and GCP to detect risky configurations, network threats, suspicious user behavior, malware, data leakage, and host vulnerabilities. Prisma Public Cloud simplifies the task of managing compliance across the multi-cloud landscape and supports audit-ready reports for CIS, NIST, PCI, HIPAA, GDPR, ISO, SOC 2, and more.

The Qualys integration enables Prisma Public Cloud to consume threat intelligence and vulnerability data from Qualys and build a deep contextual understanding of risk across your cloud environment. This enables Prisma Public Cloud to automatically prioritize alerts by level of severity so that SecOps teams can quickly manage vulnerabilities in dynamic, distributed multi-cloud environments.

RedSeal’s solutions enable companies to quantify overall security, assess critical areas of risk and validate that their security infrastructure successfully stops attacks.

Integration of RedSeal SRM with Qualys gives enterprises the ability to model their network topology, determine what vulnerabilities are present on their network and understand which vulnerable systems can actually be accessed based upon the network traffic filtering policies. All of this information is used to ultimately measure risk for asset groups and prioritize remediation.

Skybox View^® is an integrated family of Security Risk Management applications. Qualys integration with Skybox Security Risk Management (SRM) provides real-time updates of asset vulnerability data.

As new hosts and vulnerabilities are discovered by Qualys, this information becomes immediately available in Skybox View’s network model, and automatically evaluated in the attack simulation and risk calculation engine.

As the leading pioneer in cloud-based information security solutions, TraceSecurity provides risk management and compliance solutions for organizations that need to protect critical data or meet IT security mandates. With a unique combination of people, processes and technology, TraceSecurity gives decision makers a holistic view of their security posture and enables them to achieve effective data protection and automatic compliance.

TraceSecurity’s award-winning solution, TraceCSO, enables Qualys users to manage their vulnerability scan results within TraceCSO’s centralized interface and then use that data throughout TraceCSO’s risk management, IT auditing and GRC solutions. By streamlining and assuring effective IT GRC management, TraceSecurity dramatically reduces the complexities of every-changing threats and technology — and empowers organizations to better pursue their strategic objectives.

The Tufin Orchestration Suite provides a policy-centric solution for automatically designing, provisioning, analyzing and auditing enterprise security changes for the world’s largest, most complex networks. From applications, to containers and firewalls, Tufin provides advanced security policy management automation to enhance business agility and accuracy, by eliminating manual errors, and ensuring continuous compliance via a single console.

When migrating apps and workloads to the cloud, Tufin integrates with Qualys to retrieve vulnerability data on the workload for early assessment prior to migration. In case vulnerabilities are detected, Tufin will alert for further investigation, and the security team can decide whether to accept or reject the change.

ArcSight Enterprise Security Manager (ArcSight ESM) provides a real-time threat management solution. ArcSight’s ESM collects Qualys vulnerability assessment data via a SmartConnector to enable customers to precisely pinpoint the risk level of certain vulnerabilities in their IT environments.

By correlating this information for real-time monitoring it reduces false positives and provides real-time analysis, visualization, reporting, forensic analysis and incident investigation.

Bee Ware provides organizations of all sizes with the means to fight the increasing threats that can impact their activity while ensuring optimum quality of service and performance.

Bee Ware’s i-Suite provides an application firewall (WAF), access control (WAM), tools for auditing and traffic monitoring, a Web Services firewall (WSF), and centralized management that significantly reduces deployment costs. Founded in 2002, Bee Ware is present today in Europe in industry, healthcare, finance, and public services.

Bee Ware and Qualys worked jointly to provide a single solution that combines the Web application protection platform i-Suite with Qualys Web Application Scanning (WAS), a Web application vulnerability scanner.

Bee Ware’s i-Suite platform is an all-in-one solution capable of protecting and managing all types of Web applications from a single management console. The Web Application Firewall (WAF), Web Services Firewall (WSF), and Web Access Management (WAM) modules provide security for applications while protecting the information system from external attacks and fraudulent login attempts.

Thanks to this integration, IT teams can now provision Qualys WAS in Bee Ware i-Suite in a single click, regardless of the number of applications being protected, and easily identify all Web application vulnerabilities (SQL injection, Cross Site Scripting (XSS), Slowloris, etc.) In addition, it offers a consolidated view of the security policies applied to the application infrastructures (automatic building of white lists, reinforcement of controls on sensitive parameters, etc.)

BlackStratus Security Information Management (SIM) provides decision support for compliance, risk management and business continuity. Qualys and BlackStratus integration provides a centralized solution for correlation, log aggregation, threat analysis, incident response and forensic investigation with the additional value of providing valuable context for the threatened host.

Qualys vulnerability details are displayed on demand for any hosts under attack or being investigated by BlackStratus. This allows users to quickly match attacks and misuse to a host’s vulnerabilities as part of the investigation and mitigation process.

CyberSponse, Inc. provides the only patented security orchestration, automation, and response “SOAR” solution that allows organizations to integrate enterprise teams, case management, operational processes, and security tools together into a single virtual case management platform. The platform allows enterprises to gain full visibility and control over multiple cybersecurity data sources and provides a highly configurable incident response management system that enables its vulnerability management automation with the Qualys platform for automated remediation.

CyberSponse ingests Qualys vulnerability information and uses automated playbooks to help customers categorize, rank and remediate these issues within their network. The CyberSponse playbook engine allows customers to build custom use cases to help rank, prioritize, remediation and track all efforts related to customers’ security efforts.

With DFLabs’ IncMan SOAR and Qualys solutions, analysts can orchestrate, and efficiently implement a more effective security solution that can keep up with the pace of emerging threats. Thanks to API, you can easily manage Qualys solutions in your processes to enrich and validate alarms.

SOAR starts where detection stops and starting from a possible suspicion of compromise you could immediately verify the correlation between the vulnerable surface of the machine that you are investigating and the metadata part of the received alert.

DFLabs’ management team has helped shape the cyber security industry, which includes co-editing several industry standards such as ISO 27043 and ISO 30121. Its flagship product, IncMan SOAR, has been adopted by Fortune 500 and Global 2000 organizations worldwide and awarded three Patents in the USA. DFLabs has operations in EMEA, North America, and APAC. IncMan SOAR platform is an award-winning SOAR platform and DFLabs is honored to be acknowledged by a number of leading security award programs.

The Qualys App for IBM’s QRadar Security Intelligence Platform allows customers to visualize their network IT assets and vulnerabilities in real-time and helps teams produce continuous vulnerability and risk metrics from a data analytics perspective. Designed to help security teams identify where and when their organizations may be vulnerable to attack, this new Qualys App for QRadar builds real-time trending data and visualizations about key vulnerabilities into a single powerful dashboard.

Leveraging the Qualys API, customers using the app can automatically import IT asset and vulnerability data from the Qualys Cloud Platform into QRadar for better visualization and correlation with security incidents. All of this data can be viewed through customizable visualization widgets that leverage QRadar APIs to graph vulnerability severities and aging, or be searched within the QRadar app for the latest asset and vulnerability data. The app continues to automatically update QRadar with new data, giving users a single-pane view of vulnerability spikes and other trends over time across their elastic cloud, endpoints or on-premise global assets.

Infoblox delivers critical network services that protect Domain Name System (DNS) infrastructure, automate cloud deployments, and increase the reliability of enterprise and service provider networks around the world. Infoblox reduces the risk and complexity of networking in DNS, DHCP, and IP address management, the category known as DDI.

The integration with Qualys enables Infoblox customers to automatically trigger scanning when new devices join the network or when malicious events are detected, helping with asset management and remediation through near real-time visibility and automation.

LogRhythm, a leader in security intelligence and analytics, empowers organizations around the globe to rapidly detect, respond to and neutralize damaging cyber threats. The company’s award-winning platform unifies next-generation SIEM, log management, network and endpoint forensics, and advanced security analytics. In addition to protecting customers from the risks associated with cyber threats, LogRhythm provides innovative compliance automation and assurance, and enhanced IT intelligence.

LogRhythm leverages Qualys’ open platform and APIs to integrate accurate and timely vulnerability data into LogRhythm’s Security Intelligence Platform. LogRhythm’s advanced analytics incorporate vulnerability data imported directly from Qualys and automatically prioritize real-time alerts so that organizations can understand which security threats are the most critical and can respond accordingly.

NetIQ Sentinel delivers visibility into an enterprise’s network automating the monitoring of an enterprise’s IT controls for effectiveness to detect and resolve threats in real time—before they affect the enterprise’s business.

By collecting the results of Qualys’ vulnerability scans and correlating it with the user’s intrusion detection sentinel (IDS) data, Sentinel’s Exploit Detection functionality can instantly tell the Sentinel user if their infrastructure is at high risk from incoming exploits/malware.

RSA NetWitness for Logs delivers an innovative fusion of hundreds of network and log-event data sources with external threat intelligence. Enterprises now have the broad, robust, and high-speed visibility into critical information needed to help detect today’s targeted, dynamic, and stealthy attack techniques.

NetWitness for Logs provides a basis for a single, intuitive SIEM user interface presenting an unprecedented view of organizational activity across even more of the IT infrastructure.

About RSA

RSA, The Security Division of EMC, helps the world’s leading organizations succeed by solving their most complex and sensitive security challenges. RSA’s technology, business and industry solutions help organizations bring trust to millions of user identities, the activities that they perform and the data that is generated.

The Qualys Technical Add-On (TA), VM App, WAS App and PC App for Splunk streamline importing and visualizing Qualys vulnerability management, web application and KnowledgeBase data in Splunk Enterprise. The TA and Apps are compliant with the Splunk Common Information Model (CIM), allowing Qualys data to be easily ingested into Splunk Enterprise and Splunk Enterprise Security (ES) and correlated with other industry feeds.

The three Qualys Apps (VM, WAS and PC) provide dashboards and visualizations for insights and include preconfigured searches and reports.

The dashboards contain summary charts that include:

• VM: top hosts affected, most prevalent vulnerabilities, IP lookup, IPs matching a given vulnerability, as well as remediation status and trending data
• WAS: information about affected web applications and most prevalent vulnerabilities
• PC: policy posture information

The StillSecure Enterprise Integration Framework includes a set of APIs that extend VAM capabilities, allowing users to import and export data into and out of VAM. This provides an interface framework for integrating VAM with existing IT systems. Using the Qualys connector, organizations can easily import devices scanned by Qualys into VAM for management.

Through the integration, joint StillSecure and Qualys customers can better manage their organization’s risk by proactively identifying, tracking, and managing the repair of critical network vulnerabilities. Organizations importing Qualys data into VAM adopt an auditable workflow process that focuses remediation efforts on the highest priority devices before they are exploited.

TriGeo SIM is a SIEM appliance that automatically identifies and responds to network attacks, suspicious behavior and policy violations.

Designed specifically for the needs of the mid market, TriGeo SIM is unique in its ability to actively defend the network with hundreds of highly targeted correlation rules and active responses that include the ability to quarantine, block, route and control services, processes, accounts, privileges and more.

Trigeo correlates security events with vulnerabilities reported by Qualys to provide critical insight that delivers customers both situational awareness and actionable information with enterprise-wide visibility from the perimeter to the endpoint.

Cyber Observer is a continuous end-to-end cybersecurity assessment platform. The platform reduces business losses and audit costs by leveraging technology that performs continuous monitoring and auditing using Continuous Controls Monitoring (CCM) On-premises and in cloud (SSPM and CSPM).

IntSights and Qualys enable automated response to threats specific to your organization.

The IntSights integration with Qualys combines IntSights Vulnerability Risk Analyzer™ with Qualys Cloud Platform for complete visibility into assets and prioritized vulnerabilities across the enterprise. Security teams get relevant risk-scored CVEs enriched with external threat intelligence, revolutionizing the vulnerability patch management process. This robust integration enables joint customers to instantly sync vulnerabilities from Qualys and prioritize CVE patching based on risk severity.

Kenna is a software-as-a-service Vulnerability and Risk Intelligence platform that accurately measures risk and prioritizes remediation efforts before an attacker can exploit an organization’s weaknesses. Kenna automates the correlation of vulnerability data, threat data, and zero-day data, analyzing security vulnerabilities against active Internet breaches so that InfoSec teams can prioritize remediations and report on their overall risk posture.

Kenna supports the Qualys vulnerability management solution right out-of-the-box, making it easy to consume the latest Qualys scan data. Kenna adds real-time context using threat intelligence data sources such as AlienVault OTX^™, Dell CTU, Metasploit, ExploitDB and Verisign iDefense. Contextualizing vulnerabilities with what is happening this minute in the real-world allows you to automatically identify weaknesses based on your unique environment, allowing you to save massive amounts of time in your vulnerability management process.

Kenna groups assets for easy monitoring, measurement and reporting on risk. Dashboard reports can be used to visualize your exposure at-a-glance and track the your risk trend over time. And rather than basing your exposure on vulnerability counts, visualize your trending risk in real time. When everyone in your organization has access to the same view of your risk, communicating and understanding your risk posture is simple.

Kenna also matches available patches with vulnerabilities in your environment and helps you prioritize which remediations will truly make an impact. Find out what to fix first (and why), and make remediation decisions backed by analytical rigor to take meaningful actions.

Remediate vulnerabilities that provide the greatest reduction in risk based on real-world threat intelligence, not just internal weaknesses with Kenna. Know the exact “fix” to give your Development team and confirm proper remediation and prove your actions with data.

Lumeta’s network situational awareness platform is the authoritative source for enterprise network infrastructure and cybersecurity analytics. Lumeta recursively indexes a network to provide an accurate cybersecurity posture of network architecture and network segmentation policies, violations and vulnerabilities.

Lumeta IPsonar provides a point-in-time view of every IP connected device on a network, resulting in comprehensive visibility of the entire routed infrastructure and confirmation that all assets are under security management. It provides an authoritative census of attached devices for vulnerability scanning. IPsonar also identifies inbound and outbound leak paths.

Integration of Lumeta IPsonar with Qualys Vulnerability Management (VM) brings together comprehensive network visibility and vulnerability scanning of devices, enabling a more complete picture of security posture within an organization’s enterprise and, therefore, an improved ability to quickly remediate identified risk.

The plugin compares IP addresses discovered by IPsonar against those known/subscribed by Qualys VM, creating an asset group of previously unknown IPs in Qualys VM for future scanning.

RiskSense^® is a Security Analytics and Threat Prioritization Platform, that continuously ingests massive amounts of data from multiple security tools and threat feeds to quickly identify relevant vulnerabilities, and determine the severity of advanced attacks (exploits and malware), and provides solutions to fix the most critical vulnerabilities and change the overall threat landscape.

RiskSense can detect most subversive threats by fusing advance machine learning techniques and visual analytics. It provides contextual awareness and addresses current security issues through a compartmentalized and siloed approach.

The powerful combination of RiskSense with Qualys allows uncover hidden threats and resolve them before a data breach can occur.

The versatile and flexible scanning capabilities of the Qualys Cloud Platform combined with the powerful data aggregation and visual analytics of RiskSense, allows organizations to quickly identify vulnerabilities across the entire infrastructure, assess risk and manage their remediation all within an easy to use web interface. This integration provides an immediate and up-to- date security stance of the entire enterprise.

Import vulnerabilities from Qualys VM into SaltStack Protect and instantly reduce risk by remediating vulnerabilities with SaltStack Protect.

ThreatConnect and Qualys enable data-driven patching prioritization for the risk management and SOC teams.

This integration with ThreatConnect and Qualys Vulnerability Management (VM) allows users to query Qualys scan results from within the ThreatConnect Platform. Users are also able to creates tasks, indicators, and attributes in ThreatConnect based on matching results; allowing users to see which machines are vulnerable to specific indicators, so one can pinpoint exactly where to take action.

There are three integrations between ThreatQuotient’s ThreatQ platform
and Qualys.The first is an operation used for searching Qualys for
assets that are vulnerable for specific CVE IDs. Upon execution of the
operation for a selected CVE ID in ThreatQ, it searches for hosts
vulnerable for that CVE, and if it finds any, it would list the hosts
IPs, the Qualys IDs associated with the vulnerability, the severities,
and the dates of the execution of the scan.

The second is an integration with the Qualys Scanner Connector. The
Qualys Scanner Connector integrates ThreatQ with a Qualys appliance,
either cloud-based or on-prem. The vulnerabilities scanner connector
collects information about Qualys scans executed in the past days,
collects all CVEs related to those vulnerabilities and ingests them in
ThreatQ.

The third integration is with the Qualys Knowledgebase Connector. The
Qualys Knowledgebase Connector integrates ThreatQ with a Qualys
appliance, either cloud-based or on-prem. The purpose of the connector
is to download the Qualys Knowledgebase Database into ThreatQ. All
vulnerabilities from the Knowledgebase database are downloaded and
stored as Vulnerability objects in ThreatQ, and related to CVE IDs
when Qualys has mapped the QID to a CVE ID.

VeriSign^® iDefense^® Security Intelligence Services deliver actionable intelligence related to vulnerabilities, malicious code and geopolitical threats to protect enterprise IT assets and critical infrastructure from attack.

iDefense leverages an extensive intelligence gathering network, proven methodology and highly skilled security analysts that span seven specialized intelligence teams to deliver deep analysis that goes well beyond the basic notification of a threat.

VeriSign^® iDefense^® Integration Service for Qualys VM

The iDefense security intelligence data is integrated with Qualys VM to enable customers with the ability to correlate iDefense vulnerability reports with Qualys scan data against IT assets to prioritize vulnerabilities based on severity, business criticality and relevance to the organization. This integration capability, available on the iDefense portal, helps security teams prioritize patch deployments and remediation efforts particularly between full vulnerability scan cycles of their environments.

BMC Intelligent Compliance closes the SecOps gap that separates Security from Operations teams and prevents companies from achieving their goals around Governance, Risk and Compliance (GRC). Intelligent Compliance provides end-to-end automation of discovery, audit, remediation and governance to reduce risk, improve enforcement and free personnel to focus on achieving the strategic goals of the business.

Together with Qualys, the Intelligent Compliance joint solution addresses the gap through a combination of security and compliance audit data from Qualys Vulnerability Management (VM) with the associated action from BMC BladeLogic Server Automation to remediate the vulnerability. The integration solution helps reduce the window of exposure to vulnerabilities, increase the speed and frequency of audits, and lower the cost of audit and remediation.

• Reduce the Window of Exposure to Vulnerabilities — remediate vulnerabilities through automation
• Avoid Downtime — make remediation actions predictable and minimize both planned and unplanned outages
• Increase Speed and Frequency of Audits — run automated audits frequently as needed, or even on-demand, without impacting other operational activities
• Stay Compliant with Industry Regulations — take advantage of audit and remediation content for common policies
• Lower the Cost of Audit and Remediation — automate previously manual actions

Bee Ware provides organizations of all sizes with the means to fight the increasing threats that can impact their activity while ensuring optimum quality of service and performance.

Bee Ware’s i-Suite provides an application firewall (WAF), access control (WAM), tools for auditing and traffic monitoring, a Web Services firewall (WSF), and centralized management that significantly reduces deployment costs. Founded in 2002, Bee Ware is present today in Europe in industry, healthcare, finance, and public services.

Bee Ware and Qualys worked jointly to provide a single solution that combines the Web application protection platform i-Suite with Qualys Web Application Scanning (WAS), a Web application vulnerability scanner.

Bee Ware’s i-Suite platform is an all-in-one solution capable of protecting and managing all types of Web applications from a single management console. The Web Application Firewall (WAF), Web Services Firewall (WSF), and Web Access Management (WAM) modules provide security for applications while protecting the information system from external attacks and fraudulent login attempts.

Thanks to this integration, IT teams can now provision Qualys WAS in Bee Ware i-Suite in a single click, regardless of the number of applications being protected, and easily identify all Web application vulnerabilities (SQL injection, Cross Site Scripting (XSS), Slowloris, etc.) In addition, it offers a consolidated view of the security policies applied to the application infrastructures (automatic building of white lists, reinforcement of controls on sensitive parameters, etc.)

The Citrix NetScaler Application Firewall secures web applications, prevents inadvertent or intentional disclosure of confidential information and aids in compliance with information security regulations such as PCI-DSS. Application Firewall is available as a standalone security appliance or as a fully integrated module of the NetScaler application delivery solution and is included with Citrix NetScaler, Platinum Edition.

Qualys Web Application Scanning (WAS) identifies web application vulnerabilities that can then be used to automatically create rules for the NetScaler Application Firewall to prevent malicious users from exploiting the vulnerabilities. Thanks to this integration, customers can quickly mitigate the vulnerabilities discovered by Qualys WAS with NetScaler Application Firewall and reduce the risk exposure of the business supported by the vulnerable web applications.

F5 helps organizations meet the demands of relentless growth in applications, users, and data.

With F5 solutions in place, businesses gain strategic points of control wherever information is exchanged, from client devices and the network to application servers, data storage, and everything in between.

F5 Networks and Qualys have partnered to help enterprises protect mission-critical applications against cyber threats. The joint solution ensures that vulnerabilities in web applications are identified by Qualys Web Application Scanning and are quickly protected against by F5^® BIG-IP^® Application Security Manager^™ (ASM). IT staff can then correct code without undue haste, cost, compliance violations, or business interruption.

As more and more critical business applications move to the cloud, the borderless network perimeter creates new types of security, vulnerability and compliance challenges. Together, Fortinet and Qualys are providing an integrated solution to protect web applications from cyber attacks through automated scans and virtual patching, helping customers ensure that their business data is always safeguarded, from the data center to the cloud.

Qualys and Fortinet offer an integrated solution that scans applications for vulnerabilities with Qualys Web Application Scanning (WAS) and protects them with Virtual Patching on the FortiWeb Web Application Firewall (WAF).

The Imperva SecureSphere Web Application Firewall (WAF) protects Web applications and sensitive data against sophisticated attacks such as SQL injection, Cross-Site Scripting (XSS) and brute force attacks, stops online identity theft, and prevents data leaks from applications.

Qualys’ web application vulnerability scanners combined with Imperva’s SecureSphere WAF secures critical business applications and significantly reduces the need for costly emergency fix and test cycles. Organizations using Qualys can scan their Web applications for vulnerabilities and then import the scan results into SecureSphere WAF. SecureSphere WAF can instantly mitigate the imported vulnerabilities using a “virtual patch”, limiting the window of exposure and business impact.

This joint integration between Bugcrowd Crowdcontrol and Qualys Cloud Platform brings together the scale and efficiency of automated web application scanning (WAS) with the expertise of the pen-testing crowd in one simple solution. Joint customers will be able to eliminate automatically discovered vulnerabilities by Qualys WAS from their list of offered bug bounties and focus Bugcrowd programs on critical vulnerabilities that require manual testing, effectively reducing the cost of vulnerability discovery and penetration testing.

The integration allows Bugcrowd customers who also have Qualys Web Application Scanning to import vulnerability data from the results of automated scans directly into the Bugcrowd Crowdcontrol platform, and then use that data to optimize their bug bounty program scope and incentives.

ImmuniWeb® Web Security Platform provides companies of all sizes with the most sophisticated on-demand and continuous web application security testing, continuous monitoring, vulnerability management and compliance. Every security assessment can be configured, purchased and monitored online 24/7 in less than five minutes.

ImmuniWeb assessment is based on High-Tech Bridge’s award-winning hybrid technology that combines managed web vulnerability scanning with manual penetration testing in real-time, putting together the strengths of human brain and machine-learning. All the vulnerabilities from OWASP Top 10, SANS Top 25 and PCI DSS 6.5.x are quickly and reliably detected by ImmuniWeb. ImmuniWeb also thoroughly tests web application logic and authentication, provides personalized solutions for each security flaw, and guarantees zero false-positives. Vulnerability data can be easily exported to other corporate security solutions, such as WAF or SIEM.

ImmuniWeb is a perfect complement for Qualys Cloud Platform when advanced web security testing is required. In addition to this partnership Qualys and High-Tech Bridge are looking at ways to integrate platforms to provide clients with even more accurate results, virtual patching and enhanced reporting capabilities.