New solution opens the Qualys Cloud Platform allowing security teams to swiftly respond to zero-day threats and conduct compliance audits of custom applications.
Qualys, a leading provider of disruptive cloud-based IT, security and compliance solutions, has unveiled Qualys Custom Assessment and Remediation, opening its Cloud Platform to give security architects access to custom scripts that can be natively integrated with other Qualys solutions.
This new solution significantly reduces response time by empowering security teams to orchestrate workflows, secure custom applications and take immediate action to counter threats like zero-day attacks lessening the need to rely on the IT operations teams.
When threats hit, security teams need to quickly discover, assess and remediate both their third-party and custom applications. A typical response involves creating new out-of-band processes and custom scripts that need to be rolled out across hundreds or thousands of applications and endpoints by the security teams using a variety of techniques and ITSM tools. This approach creates a blind spot from an auditing and tracking standpoint and negatively impacts responsiveness.
“Reducing mean time to respond (MTTR) is the key metric for managing security risk, but it requires having the right security tools in place to optimise efficiency,” said Melinda Marks, Senior Analyst at Enterprise Strategy Group. “Qualys Custom Assessment and Remediation leverages the comprehensive capabilities of the Qualys Cloud Platform to speed up your ability to respond to a detected security issue. It provides centralised control while helping teams remediate issues within their existing tools and workflows, saving them from inefficient, costly out-of-band rework cycles.”
Qualys Custom Assessment and Remediation opens the Qualys Platform for security architects allowing the creation of custom scripts in popular scripting languages, user-defined controls and automation, all seamlessly integrated within existing programs to quickly assess, respond and remediate threats across your global hybrid environment.
Qualys Custom Assessment and Remediation enables security teams to:
Quickly address zero-day threats – The solution puts the power to rapidly respond to zero-day vulnerabilities directly in the hands of the security team by automating processes such as collecting and evaluating data, synthesizing third-party threat intelligence feeds and performing appropriate remediation actions, such as configuration changes, deleting suspicious files or deploying registry changes. The result is an accelerated MTTR, which is critical to containing an attack.
Secure and audit custom applications – Security teams can add customised controls and processes, without IT intervention, for various organisational activities including remediation actions eliminating the need to reinvent new scripts. This improves efficiency and allows security practitioners time to focus on more strategic activities.
Tightly integrate into Qualys VMDR workflows – Scripts are seamlessly integrated into existing VMDR workflows via assignment of custom Qualys IDs and Control IDs, which increases efficiency.
Access a centralised library for custom scripts and controls – The solution provides centralised control over custom scripts easily mapped into workflows and it is secured by role-based access control (RBAC) as well as review and approval processes. Additionally, deployment of scripts is simplified by using a centrally managed and customisable library of more than 50 popular reusable scripts to address common problems.
“Security teams struggle to manage and respond to a range of challenges that often require custom approaches,” said Nagi Prabhu, Chief Product Officer, Qualys. “By opening the Qualys Platform, we put security teams in the driver’s seat. Qualys Custom Assessment and Remediation enables the creation of custom scripts and controls that are seamlessly integrated into existing security processes and workflows while extending the capabilities of the Cloud Agent so organisations can respond to threats such as Zero-Days immediately.”Click below to share this article