QualysGuard 4.0 Spring Release Introduces Policy Compliance SDK, MasterCard SDP Module, and Executive Dashboard
Redwood Shores, CA April 18, 2005 Qualys Inc., the leading provider of on demand vulnerability management and policy compliance solutions, today announced its spring release, QualysGuard® 4.0, introducing a policy compliance software development kit (SDK) and application library, a self-service MasterCard SDP module, and a real-time executive dashboard. The new version of QualysGuard now allows security managers to audit and enforce internal and external policies, on demand, without the cost and complexity associated with enterprise software.
"Regulations such as the Sarbanes-Oxley Act and Basel II have pushed compliance to the forefront of the executive's agenda," said Andreas Wuchner-Bruehl, head of global IT security at Novartis AG (NYSE: NVS), a world leader in pharmaceuticals and consumer health. "As a result, much of the burden now falls on IT professionals to assure the privacy and accuracy of company data. In this environment, security managers must tie their vulnerability management and security auditing practices to broader corporate risk and compliance initiatives."
Policy Compliance SDK and Application Library Qualys has developed a library of pre-built applications that allow customers to determine the security status of specific corporate assets and compare them to internal policies and external standards. The library, which leverages new and existing APIs to extend the reach of the QualysGuard platform, currently includes more than 15 applications with new applications being developed and delivered weekly to customers.
Qualys has also developed a policy compliance SDK that allows customers to create custom applications based on their unique requirements. Qualys MSSP and consulting partners can utilize the SDK to easily create their own compliance applications to differentiate their QualysGuard-based services.
A sample of Qualys' policy compliance application library includes:
* Regulatory Reporting QualysGuard 4.0 enables companies to develop custom reports to automate and ease compliance for Sarbanes-Oxley, HIPAA, GLBA and others. With this application, customers can audit their network to identify any instances that do not conform to set standards, manage the remediation process and create customized reports that provide an unalterable audit trail. * Internal Policy Auditing In addition to complying with external regulations, companies must also uphold their IT policies. This application provides security managers with a quick and easy way to audit internal practices such as password length and access control permissions. * Rogue & Wireless Device Discovery The introduction of unknown or unauthorized wireless devices onto the network can present significant security risks. QualysGuard's device discovery application enables security and operations teams to identify devices that are unauthorized on the network or do not meet corporate standards. * Software Inventory Managing software distribution and license maintenance is fundamental to ensuring network systems are in alignment with security policies. The software inventory application allows customers to identify and determine the status of all software installed in their environment to find expired software licenses and outdated versions of software such as missing or outdated antivirus software.
