POWERED BY
INTELLIGENT BRANDS // Enterprise Security
Qualys announces availability of
all-in-one VMDR solution
Philippe Courtot, Chairman
and CEO of Qualys
Qualys, a leading provider of cloudbased
security and compliance
solutions, has announced the
availability of what it describes as a gamechanging
solution, Vulnerability Management,
Detection and Response (VMDR).
This provides an all-in-one, cloud-based
app that automates the entire vulnerability
management cycle, significantly accelerating
the ability for companies to respond to
threats and prevent breaches while reducing
licensing and operating costs.
“For many organisations, today’s
vulnerability management programs
involve different teams, using multiple point
solutions that often create more problems
than they solve, including integration
challenges, false positives, and most
importantly, critical delays in the patching
or mitigation process,” said Philippe Courtot,
Chairman and CEO of Qualys.
“We are proud to bring
our VMDR offering to
market to address these
challenges. It is the
culmination of many
years of effort to make
vulnerability management
an end-to-end solution
that cuts across the entire
hybrid environment and
one that is real-time,
accurate, easy to deploy
and operate.”
Qualys says what sets
VMDR apart from other
offerings on the market is
that it unifies the entire IT
and security workflow into
a single cloud application
to identify any device
that connects to the
network in real-time. From there, it allows
users to create and easily maintain an
always up-to-date global IT asset inventory
and asset groups, detect vulnerabilities in
real-time, prioritise these – with a state-ofthe-art
prioritisation engine that also takes
into account misconfigurations and digital
certificate security exposures – and finally
mitigate and remediate vulnerabilities across
the entire global hybrid IT environment,
which includes on-premises devices,
endpoints, cloud, mobile, containers, web
apps and APIs.
As such, Qualys VDMR provides the
foundation for a comprehensive riskbased
vulnerability management program
that does not solely rely on CVE-based
vulnerabilities and arbitrary risk scores, which
can give a false sense of security.
Scott Crawford, Research Vice President,
Security at 451 Research, part of S&P
Global Market Intelligence, said: “In a
world where cloud concepts increasingly
dominate, with multiple hosted services
providing functionality previously owned
and operated by on-premises IT, many
existing approaches to solving these
problems predicated on deployment within
a traditional enterprise network are now
showing their age.
“Dragging traffic back to a VPN
concentration point will likely not be the
preferred method indefinitely, if only for
availability and capacity considerations
alone. If an outcome of the current crisis is
a more enduring entrenchment of remote
work for the indefinite future, the changes
in enterprise security architecture they
precipitate may come to stay.
“The performance of these services will have
to meet or exceed that expected from direct
connection to the target – which makes it
seem likely that cloud providers in the best
position to meet this demand may either
embrace these trends directly or become key
enablers of new approaches.”
Rik Turner, Principal Analyst, Infrastructure
Solutions at Ovum, said: “Qualys has a long
history of innovation, having launched its
vulnerability management offering as a
cloud service in 1999.
“That innovation continues today as
the company launches the industry’s
first and only end-to-end VM platform
– encompassing everything from asset
discovery to vulnerability assessment and
prioritisation to patching and remediation.
“With VMDR, organisations can finally
complete the vulnerability cycle within
a single UI, delivering on the promise of
driving time to remediation toward zero.” •
www.intelligentcio.com INTELLIGENTCIO 67