Share this article on:
Qualys has announced the launch of CyberSecurity Asset Management (CSAM), that is designed to detect security gaps and respond to the risk, all from a unified platform built on the Qualys Cloud.
Organisations have rapidly accelerated their digital transformation by leveraging technologies such as cloud and container that support the shift to IoT and a remote workforce over the past year.
Security teams need to monitor IT asset health from a cyber security perspective by detecting security tool blind spots and responding to exposures quickly.
According to Jatinder Pal Singh, director of security operations at Informatica, asset management in the security operations context isn't just ‘seeing’ an asset; it is having quick access to the right ‘risk’ context of each and every software, hardware and IoT asset.
“As an organisation focused on security operations, we believe that ‘you can't protect what you don't understand’, with understand being the key word," Singh said.
"Our SOC asset management leverages the Qualys CyberSecurity Asset Management app to not only provide the visibility we need, but it goes a step further and assesses every asset's security risk, enabling our SOC to not only get relevant alerts but enable the IR analyst to take appropriate and timely actions."
Since traditional asset administration responsibilities like inventory, software support and license oversight, addressed with IT inventory-focused tools, the digital shift revealed the need for a new approach to asset visibility.
CyberSecurity Asset Management is designed to be an all-in-one solution that leverages on the power of the Qualys Cloud Platform with its multiple native sensors and CMDB synchronisation that is aimed to continuously inventory known and unknown assets, discover installed applications, overlay business and risk context to establish asset criticality.
The software is also designed to identify unauthorised or end-of-life and end-of-service software, the absence of required security tools, and assesses the health of the attack surface.
According to Tanner Johnson, principal analyst at Omdia, CSAM is more than a list of IT assets, as it leverages vital context from the Qualys Cloud Platform to identify, consolidate and prioritise critical assets.
“The platform, in turn, provides the orchestration needed for the security team to take swift action to mitigate risk while eliminating the need to pass reports back and forth between IT and security,” Johnson added.
“By providing a platform-based approach to the challenge of asset security response, Qualys is helping to distinguish itself in this market.”
CSAM enables response options with threat alerts and software removal and delivers regulatory reporting in support of FedRAMP, PCI-DSS and other mandates to assist security teams identify and respond to gaps.
Nastasha is a Journalist at Momentum Media, she reports extensively across veterans affairs, cyber security and geopolitics in the Indo-Pacific. She is a co-author of a book titled The Stories Women Journalists Tell, published by Penguin Random House. Previously, she was a Content Producer at Verizon Media, a Digital Producer for Yahoo! and Channel 7, a Digital Journalist at Sky News Australia, as well as a Website Manager and Digital Producer at SBS Australia. Nastasha started her career in media as a Video Producer and Digital News Presenter at News Corp Australia.