Qualys has introduced that it’s including Exterior Assault Floor Administration (EASM) capabilities to its Qualys Cloud Platform.
The brand new part, constructed into CyberSecurity Asset Administration 2.0, provides an out of doors attacker’s viewpoint to establish beforehand unknown Web-facing belongings for a whole and correct image of an enterprise’s assault floor.
Digital transformation, elevated reliance on the cloud and the Web of Issues (IoT), a rising distant workforce, and a scarcity of technological expertise have dramatically elevated the assault floor of enterprises. This enlargement makes it troublesome for safety groups to attach belongings which are externally seen and managed internally and management compromises that happen because of undetected, unmanaged, or poorly managed IT belongings. Organizations want a brand new method to view susceptible belongings from the surface in and implement them just like the attacker to shortly establish areas of threat.
“Organizations should proactively handle their cyber defenses, which embrace discovering and remedial vulnerabilities to cut back cyber dangers,” stated Michelle Abraham, director of analysis, safety and belief at IDC. “Qualys’ distinctive method from EASM is to mix inner and exterior asset knowledge from CyberSecurity Assault Administration with a Vulnerability Administration, Detection, and Response (VMDR) resolution right into a single view. Because of this, organizations can higher establish undetected belongings and immediately entry and mitigate cyber dangers throughout the similar workflow”.
Qualys CyberSecurity Asset Administration supplies invaluable insights into the assault floor from an out of doors attacker’s standpoint,” stated Mike Oroz, Vice President of Info and Product Safety at Vertiv. Beforehand unknown web dealing with gadgets. Moreover, automated workflows allow us to shortly prioritize safety engineering actions that may scale back cyber dangers and enhance the safety of our firm.”
Qualys CyberSecurity Asset Administration 2.0 with EASM permits organizations to constantly monitor, scale back your entire group’s assault floor together with inner and on-line belongings, and detect beforehand unidentified exposures. It additionally helps to synchronize with CMDBs, detect vulnerabilities resembling unauthorized or end-of-support software program, open ports, distant exploitable vulnerabilities, digital certificates points, unauthorized functions and domains, and mitigate dangers by taking acceptable actions.
Qualys CyberSecurity Asset Administration with EASM permits safety and IT groups to:
Expose vulnerabilities throughout your entire assault floor From a single cloud platform, the answer always discovers and precisely categorizes inner and exterior Web-facing belongings. It robotically finds your subsidiaries, enumerates the horizontal, vertical, and sub-domain, associates WHOIS and DNS data, and asset labels along with your group.
Get a dependable and correct view of safety and IT operations alignment – Improve previous, unconfirmed knowledge in your CMDB with CyberSecurity Asset Administration. Groups can seize unmanaged belongings and acquire a single supply of reality for Web-facing belongings, together with location and context, by robotically synchronizing with enterprise CMDB and Vulnerability Administration to simplify steady monitoring and response to the assault floor.
Tackle dangers shortly with Native VMDR 2.0 integration CyberSecurity Asset Administration 2.0 and Qualys VMDR 2.0 enhance cybersecurity software program prowess with TruRisk scoring and one-click automation of vulnerability and remediation workflows to show Web-facing belongings into totally managed, patched belongings.
“Attaining full asset visibility stays some of the elusive cybersecurity targets,” stated Somid Thakkar, President and CEO of Qualys. “CyberSecurity Asset Administration 2.0 solves this by offering each a complete exterior attacker stage and an inner view of the assault floor to comprehensively handle the rising menace panorama. Taking safety a step additional, we’ve natively built-in the answer with Qualys VMDR so organizations can prioritize vulnerabilities and teams Belongings primarily based on threat and proactively addressed to cut back publicity shortly.”
Qualys CyberSecurity Asset Administration 2.0 with EASM is at present in preview and accessible to present prospects. It is going to be usually accessible in mid-September.