Qualys has announced it is expanding Qualys CyberSecurity Asset Management to identify unmanaged and untrusted devices in real time. Leveraging the Qualys Cloud Agent to continuously monitor the network, this passive discovery method complements scans, agents, and API-based discovery to build a comprehensive asset inventory, calculate the TruRisk of every asset, and eliminate risk based on business impact.
Sixty-nine per cent of organisations said they experienced at least one cyberattack resulting from an exploit of an unknown or unmanaged asset such as software, cloud-based workloads, user accounts, and connected Internet of Things (IoT) devices. Staying on top of a changing attack surface requires constant vigilance. Qualys is tackling this critical issue by enriching its Cloud Agent to offer passive sensing, empowering security teams to protect against threats that originate within the internal network, without disrupting operations.
With this new capability, Qualys CyberSecurity Asset Management strengthens its position as the industry leader in combining internal and external attack surface management. By leveraging Qualys Cloud Agents to sniff network traffic, customers have identified an average of 34% more unmanaged and untrusted assets, seamlessly integrating them into their vulnerability management programmes with business context and risk assessment.
Qualys CyberSecurity Asset Management with passive sensing provides organisations with:
- Complete Internal Attack Surface Coverage: Incorporates the final component of a comprehensive asset inventory to detect risk from IoT devices, unauthorised cloud instances and any network devices that may have been previously missed. By adding previously unmanaged and untrusted network device inventory, organisations can perform automated vulnerability management and compliance scans to identify vulnerabilities and misconfigurations, calculate TruRisk, and prioritise remediation actions based on business risk—all within a single platform.
- Lays the Foundation for Zero Trust Security Architecture: CyberSecurity Asset Management proactively identifies devices connected to the network that are not authenticated, missing security agents, or otherwise untrusted in real-time. This provides cyber risk assessment—without additional overhead, cost, or resource deployment.
- Turbocharges CMDB Accuracy and Coverage: Automatically add discovered assets to the configuration management database (CMDB), enabling IT with comprehensive visibility required to manage asset inventory lifecycle and remediate cyber risk.
“By adding passive discovery to Qualys’ more than 100 million deployed Cloud Agents, we are providing organisations with a unique expansion of attack surface coverage that requires no additional overhead, cost, or resources to maintain,” said Sumedh Thakar, president and CEO of Qualys. “Bringing significantly more visibility to unknown devices as part of their risk management programmes, CISOs now have an ace-in-the-hole to defend against shadow IT; a huge step as organisations move toward a Zero Trust Security Architecture.”
Availability
The Qualys Cloud Agent Passive Sensor is now available as part of Qualys CyberSecurity Asset Management app.
Discussion about this post