Qualys Cloud Platform

Formerly Qualysguard

Some of the major drivers behind why companies deploy Qualys Cloud --Compliance obligations, Policy enforcement validation and policy violations, Continuous monitoring and incident response, Detect and prioritize vulnerabilities and mis-configurations across the IT estate, as well as supporting automated patching and remediation activities continuous monitoring, event triage and threat hunting. Security should be a top business priority in every industry and a lack of funding is no excuse

As per my past experience with qualys vm tool, we implemented for scanning the assets in cloud as well as on-prem. Also we had used for web application scanning. Integrated with splunk for centralised monitoring and reporting purpose for missing patch on assets, patched assets status, not scanned assets, etc.

Qualys really excels in internal/external vulnerability reporting (across physical, on-premise virtual and cloud-based devices), PCI scanning and cloud configuration security. Their products are full-featured, reliable and relatively easy to use, for the most part. Technical support and account management functions work well together to deliver a successful customer experience.

Qualys really covers most of the operational security needs of my team and support for multiple clouds is making it easy for us to go with any cloud. We are able to see the value immediately and correct any potential violations right away. However we are also looking for a system that can proactively identify common mistakes whenever new resources are spun up that can violate our security policies rather flag it later.

Qualys is a great vulnerability management solution that can scale from small companies to large companies.

Installation: Qualys is a cloud-based service (cloud management), in case you require an offline solution, Qualys is not the solution for you.
You can scan all types of devices: servers, endpoints, network equipment, FW, and much more, including Cloud workloads (they have a dedicated appliance for IaaS).
For endpoints, it's better to use their Agent in order to avoid running the scans over the network. this has an additional cost.
For Compliance needs, Qualys is good enough.

It is well suited for environments that are looking for a solution that is top notch for vulnerability scanning, and is the most accurate at doing so. It would also fit environments that have a lot of endpoints to scan or like to have scanning done on an automatic basis.

It is less appropriate in environments that want to use a platform right away, without getting training in how to use it, or reading documentation on the product.

Qualysguard is well suited for all IT vulnerability scanning. Because of its noise (which is configurable) it is not recommended for ICS environments without customization.

Of many of the other vulnerability testing suites I used, this offered the most robust features and, once you learned the UI, was a go-to tool. The reporting was very nice for not only us technical but for reports for management as well that were easy to understand and prioritize fixes.

I've seen Qualysguard work really well for discovery, however you need to have good knowledge of your organization's network topology to ensure Qualys is able to access. In some cases you may end up requiring multiple appliances due to capacity or access contraints. Qualysguard is also very good for verifying patching, server hardening configurations, and other compliance requirements.