VeriSign iDefense Security Intelligence Services and Qualys: QualysGuard Vulnerability Management
VeriSign, Inc., the trusted provider of Internet infrastructure services for the networked world, and Qualys, Inc., the leading provider of on demand IT security risk and compliance management solutions, announced a strategic relationship whereby iDefense intelligence is integrated with scanning data from QualysGuard Vulnerability Management (VM). The integration drives immediate availability of two new services that combine advanced, in-depth security threat intelligence and vulnerability scanning data, which enables enterprises to protect critical IT assets from compromise or attack, particularly against zero-day threats and vulnerabilities. Zero-day threats are exploitable security vulnerabilities in software that are discovered before the software vendor identified them and begun a process for patching.
Through the first of these services, iDefense has made its iDefense Exclusives security vulnerability data available through QualysGuard VM. Availability of iDefense Exclusives enables Qualys to create scan signatures for zero-day vulnerabilities. This enhancement to QualysGuard VM offers security teams more efficient and accurate risk mitigation capability against zero-day threats and vulnerabilities.
Additionally, the iDefense security intelligence data is integrated with QualysGuard VM to enable customers with the ability to correlate iDefense vulnerability reports with Qualys scan data against IT assets to prioritize vulnerabilities based on severity, business criticality and relevance to the organization. This integration capability, available on the iDefense portal, helps security teams prioritize patch deployments and remediation efforts particularly between full vulnerability scan cycles of their environments.
"As security threats and vulnerabilities continue to evolve, organizations are increasingly looking for tools and solutions that will enable them to proactively prioritize and respond to security attacks in a cost-effective way," said Irida Xheneti, Security Services Research Analyst at IDC. "Through the integration of the VeriSign iDefense security intelligence with the QualysGuard Vulnerability Management solution, organizations will be able to leverage deep security analysis of their respective environment, security intelligence of current threats and vulnerabilities combined with the ability to prioritize actions to vulnerabilities based on asset criticality."
QualysGuard VM is a leading vulnerability management solution that automates the lifecycle of network auditing and vulnerability management across the enterprise, including network discovery and mapping, asset prioritization, vulnerability assessment reporting and remediation tracking according to business risk. QualysGuard VM dramatically reduces security managers' time researching, scanning and fixing network exposures and enables companies to eliminate network vulnerabilities before they can be exploited. The inclusion of public and exclusive vulnerabilities from the iDefense Intelligence team will supplement existing vulnerability data from the Qualys KnowledgeBase to create a powerful threat and vulnerability management capability for our customers worldwide.
"The addition of the deep and analytical research from iDefense as a source of vulnerability data to QualysGuard VM will ensure our clients have the most complete view of threats that pose the greatest risk to the enterprise," said Philippe Courtot, Chairman and CEO, Qualys Inc. "We are pleased to be among the first security solution providers to incorporate this critical intelligence into our solutions."
Leveraged by an extensive, worldwide intelligence gathering network, proven methodology and highly skilled security professionals, VeriSign iDefense Security Intelligence Services deliver deep analysis and actionable intelligence related to vulnerabilities, malicious code and geopolitical threats to protect critical infrastructure from attacks.
"The rapid pace with which modern cyber threats evolve means enterprises need the ability to constantly monitor their points of exposure," said Mike Denning, vice president of Enterprise Security at VeriSign. "It's not practical to run continuous scanning over an entire enterprise IT environment, so the ability for our customers to regularly monitor the threat landscape relative to their latest scan dramatically improves their ability to proactively respond as threats grow in severity."