Qualys CyberSecurity Asset Management expands to ‘detect unauthorised devices’ a...
source link: https://itwire.com/business-it-news/security/qualys-cybersecurity-asset-management-expands-to-%e2%80%98detect-unauthorised-devices%e2%80%99-across-hybrid-environments.html
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Monday, 05 February 2024 11:21
Qualys CyberSecurity Asset Management expands to ‘detect unauthorised devices’ across hybrid environments Featured
By Gordon Peters
Cloud-based IT, security, and compliance solutions provider Qualys CyberSecurity Asset Management is expanding to identify unmanaged and untrusted devices in real-time.
Leveraging the Qualys Cloud Agent to continuously monitor the network, Qualys says this passive discovery method complements scans, agents, and API-based discovery to build a comprehensive asset inventory, calculate the TruRisk of every asset, and eliminate risk based on business impact.
According to Qualys sixty-nine percent of organisations said they experienced at least one cyberattack resulting from an exploit of an unknown or unmanaged asset such as software, cloud-based workloads, user accounts, and connected Internet of Things (IoT) devices. Staying on top of a changing attack surface requires constant vigilance.
“Qualys is tackling this critical issue by enriching its Cloud Agent to offer passive sensing, empowering security teams to protect against threats that originate within the internal network, without disrupting operations,” notes Qualys.
“With this new capability, Qualys CyberSecurity Asset Management strengthens its position as the industry leader in combining internal and external attack surface management. By leveraging Qualys Cloud Agents to sniff network traffic, customers have identified an average of 34%[1] more unmanaged and untrusted assets, seamlessly integrating them into their vulnerability management programs with business context and risk assessment.”
"In navigating intricate enterprise landscapes, real-time visibility of the entire infrastructure is difficult, and at times, appears impossible," said Gary Bowen, director of Security Operations, Brown & Brown Insurance. "The Qualys Cloud Agent passive sensor has proven to be a game-changer, providing us with unparalleled visibility and immediate insights across our hybrid IT and OT domains, all without the complexities of identifying optimal locations for network taps. By helping to eradicate blind spots, this passive sensing capability empowers our security teams to identify and address potential risks the moment they arise, offering a comprehensive view of cyber risk across our entire attack surface."
Qualys says CyberSecurity Asset Management with passive sensing provides organisations with:
Complete Internal Attack Surface Coverage: Incorporates the final component of a comprehensive asset inventory to detect risk from IoT devices, unauthorised cloud instances and any network devices that may have been previously missed. By adding previously unmanaged and untrusted network device inventory, organisations can perform automated vulnerability management and compliance scans to identify vulnerabilities and misconfigurations, calculate TruRisk, and prioritise remediation actions based on business risk—all within a single platform.
Lays the Foundation for Zero Trust Security Architecture: CyberSecurity Asset Management proactively identifies devices connected to the network that are not authenticated, missing security agents, or otherwise untrusted in real-time. This provides cyber risk assessment—without additional overhead, cost, or resource deployment.
Turbocharges CMDB Accuracy and Coverage: Automatically add discovered assets to the configuration management database (CMDB), enabling IT with comprehensive visibility required to manage asset inventory lifecycle and remediate cyber risk.
"By adding passive discovery to Qualys’ more than 100 million deployed Cloud Agents, we are providing organisations with a unique expansion of attack surface coverage that requires no additional overhead, cost, or resources to maintain," said Sumedh Thakar, president and CEO of Qualys.
"Bringing significantly more visibility to unknown devices as part of their risk management programs, CISOs now have an ace-in-the-hole to defend against shadow IT; a huge step as organisations move toward a Zero Trust Security Architecture."
Availability
The Qualys Cloud Agent Passive Sensor is now available as part of Qualys CyberSecurity Asset Management app. To learn more, join our webinar or read our blog, Identify and De-risk Unmanaged, Unauthorised Devices With Qualys CyberSecurity Asset Management.
Additional Resources
[1] According to Qualys data
Read 156 times
Please join our community here and become a VIP.
Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here
GARTNER MARKET GUIDE FOR NDR 2022
You probably know that we are big believers in Network Detection and Response (NDR).Did you realise that Gartner also recommends that security teams prioritise NDR solutions to enhance their detection and response?
Picking the right NDR for your team and process can sometimes be the biggest challenge.
If you want to try out a Network Detection and Response tool, why not start with the best?
Vectra Network Detection and Response is the industry's most advanced AI-driven attack defence for identifying and stopping malicious tactics in your network without noise or the need for decryption.
Download the 2022 Gartner Market Guide for Network Detection and Response (NDR) for recommendations on how Network Detection and Response solutions can expand deeper into existing on-premises networks, and new cloud environments.
PROMOTE YOUR WEBINAR ON ITWIRE
It's all about Webinars.Marketing budgets are now focused on Webinars combined with Lead Generation.
If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.
The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.
Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.
We look forward to discussing your campaign goals with you. Please click the button below.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK