Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of cloud security and compliance solutions, today announced the launch of Qualys Cloud Agent Platform (CAP), a revolutionary new platform that extends Qualys' industry-leading Cloud Security and Compliance Platform with lightweight agents to continuously assess security and compliance of organizations’ global IT infrastructure and applications. This new platform provides organizations with a flexible solution to assess and address the security and compliance of their IT assets in real time, whether on-premise, cloud-based or mobile endpoints.
"The lack of visibility of the risks within an organization's global IT infrastructure is a deep concern. Periodic vulnerability and configuration scans can provide some visibility but scale creates different problems. For example scanning a 100,000-node network can potentially yield millions of findings, which creates difficulty in prioritizing which vulnerabilities to remediate first. Using a host-based scanning approach, delivered as a service, brings not only real-time information but also can increase the ability to consume the high levels of data collected,” said Charles Kolodgy, vice president, for IDC.
Conventional host-based scanning methods combined with network scanning have been the de facto way for organizations to identify vulnerabilities as well as update and verify patches to mitigate threats. However, the challenges of establishing scanning windows and authenticated scans, managing and updating heavyweight agents, and the rise of the cloud and mobile environments, have proven difficult and cost prohibitive for most companies. The Qualys Cloud Agent Platform resolves this conundrum by combining the power of its Cloud Platform with lightweight agents that are extensible, centrally managed and self-updating.
“Traditional vulnerability scanning methods present a number of challenges for IT security teams who either don’t have the proper credentials, or are scanning assets that aren't always connected to the local network,” said Philippe Courtot, Chairman and CEO for Qualys, Inc. “Qualys Cloud Agent Platform is a game changer and a new paradigm of continuously assessing IT systems. This platform provides our customers with the flexibility and choice they need to conduct real-time vulnerability and compliance management for IT assets whether it’s on-premise, cloud-based or mobile endpoints.”
Core Cloud Agent Platform (CAP)
Qualys CAP represents the next phase of innovation in Qualys’ industry-leading portfolio of security solutions. Leveraging Qualys’ Cloud Architecture, it provides an entirely new security assessment platform that can scale to handle millions of devices. Qualys CAP provides a lightweight agent (1mbytes) that can be installed on any host such as a laptop, desktop, server or virtual machine. Qualys Cloud Agents extract and consolidate vulnerability and compliance data and update it continuously within the Qualys Cloud Platform for further analysis and correlation, thus providing a continuous view of the security compliance posture of the global network.
The cloud agents are deployed via a compact agent installer that can be embedded in system images, deployed with Group Policy, or simply run from the command line. The agent consumes very little CPU resources, ranging from 5% at peak to less than 2% in normal operation. Once installed, the agent will take a full assessment of its host while running in the background, and send that assessment snapshot back to the Qualys Cloud Platform for evaluation. Thereafter, a configurable profile controls how often the agent sends host changes as small deltas back to the platform to incorporate with the snapshot. Initial, full snapshots are only about a few megabytes, and subsequent deltas are a few kilobytes. This reduces the network bandwidth consumption to far below that of traditional scanning as well as other agent-based solutions.
Additionally, using the Qualys asset tagging solution, assets with deployed agents can automatically or manually provide attribute updates to the Qualys Cloud Platform such as the asset group, business owner, technical owner and criticality of the device.
Asset Inventory Service
IT or security administrators can deploy the Cloud Agent on their IT assets on a global scale, including on-premise systems, cloud-based servers or mobile endpoints. The inventory service allows IT professionals to search millions of assets in a matter of seconds.
Cloud Agent Platform Capabilities
Once these Cloud Agents are installed the following additional capabilities can be turned on instantly per IT asset:
- Cloud Agent for Vulnerability Management (VM)
The Cloud Agent brings a revolutionary new way to continuously monitor assets for the latest Operating System, Application and Certificate vulnerabilities as well as to track the missing critical patches on each device in real time. This eliminates the need for establishing scanning windows or integrations with credential vaults for systems, as well as the need to actually know where a particular asset resides. Qualys users can combine network scans with Cloud Agents for devices such as firewalls, routers etc. where it is not practical to install agents. Customers can also leverage the Qualys Continuous Monitoring (CM) solution to take this real-time data and turn it into instant alerts.
In future releases, Qualys will provide Indication of Compromise (IOC) detection capabilities via the Cloud Agent.
- Cloud Agent for Policy Compliance (PC)
Likewise, the Cloud Agent turns Qualys’ Policy Compliance offering into a real-time solution and extends it to endpoints, which until now could not be performed by traditional network scanning solutions. This now allows customers to continuously evaluate all relevant assets against standards and benchmarks such as PCI DSS, CIS, ISO and HIPAA and many others.
In future releases, Qualys will provide File Integrity Monitoring (FIM) and Policy Enforcement (PE) capabilities via the Cloud Agent.
- Cloud Agent for Elastic Cloud Environments
Qualys Cloud Agent architecture greatly simplifies asset discovery and tracking as well as security and compliance monitoring in highly dynamic cloud environment like Amazon EC2 and Microsoft Azure since it gives customers the ability to embed the agent into the master images of their cloud servers. As soon as a new instance is created from the master image, it automatically activates the agent, which instantly registers, and tracks the security and compliance of each and every instance eliminating the need to implement a separate discovery mechanism or to build automation around spawning new scanners to scan the new instances.
- Cloud Agent CONNECT
All the data collected by the millions of Cloud Agents installed within an IT environment resides within the Qualys Cloud Platform, which makes it easy to transfer this data via published APIs to existing third-party tools including Security and Event Management (SIEM), big data analytics platforms such as Splunk, CMDBs and help desk systems.
In future releases, Qualys will provide automatic synchronization with such solutions.
Qualys Cloud Agent Platform is now available for trial on all Windows platforms and will go live on May 15, 2015. Cloud Agents for Unix and Apple OSX will be available in Q3 of 2015. Annual subscriptions for Enterprise users start at $29.95 per agent for packages of 256 agents, and for SMB users at $19.95 per agent for packages of 64 agents. All subscriptions include 24x7 support and product updates.
To learn more about Qualys Cloud Agent Platform register for a free trial at https://www.qualys.com/cloudagent.
About Qualys, Inc.
Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of cloud security and compliance solutions with over 7,700 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100. The Qualys Cloud Platform and integrated suite of solutions help organizations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including Accenture, Accuvant, BT, Cognizant Technology Solutions, Dell SecureWorks, Fujitsu, HCL Comnet, InfoSys, NTT, Tata Communications, Verizon and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA) and Council on CyberSecurity. For more information, please visit www.qualys.com.