Item: Qualys TruRisk Platform
Rating: 8
Author: Alex Waitkus, CISSP-ISSAP, OSCP

Use Cases and Deployment Scope

We used the Qualys API and python to create rolling scheduled scans of every 2 weeks for every network for our organization. We first focused on critical and high vulnerabilities with direction to remediate or remove the system within 30 days. We saw a drastic reduction in number of attacks and compromises for systems across the enterprise.

Pros and Cons

API Task scheduling and configuration
Threat database updates through authenticated scanning of Windows and Unix operating systems
Reporting capabilities

The API query can only support limited number of connections in a time period without calling support to request more, I would suggest removing that limitation.

Return on Investment

ROI was noticed with reduction of compromises which required server downtime and incident response.

Alternatives Considered

Nessus, OpenVAS and Nmap

Qualysguard is a leader and is on par with the Nessus enterprise version.

Other Software Used

Palo Alto Networks Next-Generation Firewalls - PA Series, Palo Alto Networks Threat Protection, Palo Alto Panorama

Likelihood to Recommend

Qualysguard is well suited for all IT vulnerability scanning. Because of its noise (which is configurable) it is not recommended for ICS environments without customization.

Qualysguard to improve the quality of your security posture

Overall Satisfaction with Qualysguard