Full Text

The QualysGuard Vulnerability Management (VM) solution provides automated auditing and vulnerability management for small to large enterprises. The solution is a private cloud-based software-as-a-service. The easily accessible, web-based design makes it possible to operate the system via a browser from anywhere there is internet access. This functionality includes the operation of the Qualys virtual and hardware appliances used for addressing private network addresses. The tool includes network discovery, asset mapping, prioritization, vulnerability assessment, centralized reporting and remediation tracking. Qualys employs a trouble-ticketing feature to help in tracking and remediating vulnerabilities and other problems across the network. The remediation solution includes comprehensive reports on vulnerabilities, including severity levels, time-to-fix estimates, impact on business, and trend analysis on security issues. A robust set of reports provides status insight for business managers, as well as technical managers and staff. Vulnerability reporting includes the use of common references, such as the Common Vulnerabilities and Exposures (CVE) database, to help provide a common language for auditors and other reporting requirements. The intuitive graphical dashboards and menus made deployment and use of the product easy to get up and running.