QualysGuard VM enables enterprises to effectively manage their vulnerabilities and maintain control over their network security with centralized reports, verified remedies, and full remediation workflow capabilities with trouble tickets. QualysGuard provides comprehensive reports on vulnerabilities including severity levels, time to fix estimates and impact on business, plus trend analysis on security issues.

• Mitigate risk by automating vulnerability identification and prioritizing remediation based on risk to business operations
• Agent-less auditing, tamper resistant audit trails and the certainty that comes with third-party assessment
• On demand SaaS technology offers significant economic advantages with no capital expenditures, extra human resources or infrastructure to deploy and manage
• Unprecedented scalability makes it ideal for large, distributed organizations
• Rapidly identify, visualize and organize network assets into Business Units and Asset Groups

• Automatic centralized reporting from distributed scans
• Consolidated administration of both internal and external (perimeter) scanning
• Executive Dashboard
• Asset-based solution with an interactive asset search portal
• Authorized user access from any location
• Export reports to HTML, MHT, PDF, CSV and XML formats

• Scheduled scans and network discoveries
• Automated daily updates to vulnerability KnowledgeBase
• Automated remediation ticket generation and verification

• Comprehensive vulnerability KnowledgeBase incorporates thousands of unique checks
• Trusted, third-party certification of network security with tamper resistant audit trails
• Inference-based scanning engine with nonintrusive scanning techniques
• Both un-trusted and authenticated scanning capabilities
• Internal and external scanning provides a 360-degree view of network vulnerabilities
• Configurable scans for customized audits
• Unique fingerprints for over 2,000 operating systems, applications and protocols

• On demand SaaS technology allows users to scan globally with no additional infrastructure
• Fast scanning through load balancing of scanner appliances
• User definable Business Units and Asset Groups that tie into business operations
• End-to-end encryption of vulnerability data
• Hierarchical role-based user access controls allow delegation of responsibilities to reflect organizational structure
• Policy-based remediation workflow management with automatic trouble ticket creation and assignment

• Extensible XML API Library
• Out-of-the-box integration with leading SIM solutions
• Integration with Helpdesk systems
• Integration with Patch Management systems for auto-remediation capabilities
• Industry standard support for vulnerability scoring with Common Vulnerability Scoring System (CVSS)
• Industry standard support for the addition of custom detections using Open Vulnerability Assessment Language (OVAL)

• Customizable reports for on demand reporting by business unit for executives and managers
• Automated trending and differential reports
• Remediation reporting: ticket trending by asset group, user and vulnerability
• Scorecard reports for enterprise stakeholders
• Automated report generation and distribution
• Multiple report distribution options including
encrypted PDF

• 24x7x365 live customer support
• Daily signature updates and feature enhancements are completed automatically, transparent to the user
• Ongoing Web-based customer training
• Technical training and certification workshops

• Annual Subscription:
  Unlimited assessments of a predefined number of IP devices. Ideal for regular security assessments of network assets.
• Per Scan:
  Flexible use of QualysGuard Enterprise in environments with quarterly or periodic scanning requirements. QualysGuard Vulnerability Management is also available as part of the QualysGuard Security & Compliance Suite, which includes:
• QualysGuard Vulnerability Management
• QualysGuard Policy Compliance
• QualysGuard PCI Compliance
• QualysGuard Web Application Scanning

By continuously and proactively monitoring all network access points, QualysGuard VM dramatically reduces security managers’ time researching, scanning and fixing network exposures and enables companies to eliminate network vulnerabilities before they can be exploited.

• Turnkey deployability requires no software to install, update or maintain
• Automates all steps of vulnerability assessment, management and threat reduction
• Trusted, unbiased third-party security auditing and compliance reporting meets industry and regulatory compliance requirements
• Discover all assets across the entire network
• Accurate and always up-to-date vulnerability audits
• Easy-to-use, comprehensive reporting
• Integrated remediation and trouble-ticketing workflow
• Cost efficient with no hidden costs
• Secure, with complete end-to-end data encryption

• Deploys in minutes with no software installation, setup complications or maintenance upgrades
• Immediately accessible anytime, anywhere via a Web browser

• Network mapping rapidly detects and identifies servers, desktops, routers, wireless access points and other network devices
• Comprehensive vulnerability KnowledgeBase incorporates thousands of unique security checks
• Automatic, daily updates to vulnerability KnowledgeBase
• Non-intrusive detection techniques
• Inference-based scanning engine
• Authenticated scanning capabilities
• Internal and external scanning provides a 360-degree view of network vulnerabilities
• Configurable scans for customized audits
• Unique fingerprints for over 2,000 operating systems, applications and protocols

• Manage your network by categorizing
  discovered assets into groups
• Assign a business value to assets based on
  their criticality to your business operation

• Automatically generate and verify trouble tickets
via dedicated remediation workflow
• Create ticket policies to focus and automate remediation efforts
• Ticket trending and reports by owner, asset group and vulnerability help track performance
• Easy-to-follow instructions to eliminate risks

• Extensible XML API
• Out-of-the-box integration with existing and legacy security management consoles
• Out-of-the-box integration with ticketing systems and helpdesk solutions
• Industry standard support for the addition of custom detections using Open Vulnerability Assessment Language (OVAL)
  
  

• 24x7x365 live customer support
• Daily signature updates and feature enhancements are completed automatically, transparent to the user
• Ongoing Web-based customer training
• Technical training and certification workshops

• Perimeter Scanning: Pricing is based on the number of IP addresses.
• Internal & Perimeter Scanning: Pricing is based on the number of IP addresses (up to 3,072).

• QualysGuard Vulnerability Management
• QualysGuard Policy Compliance
• QualysGuard PCI Compliance

• Easy access to automatically generated reports via a Web browser
• Executive Dashboard
• Graph and trend reports for managers
• Detailed reports with verified remediation
actions for technicians
• Network topology visualization
• CVE and Security Focus-linked vulnerability checks with detailed remediation instructions
• Export reports to HTML, MHT, PDF, CSV and XML formats