Qualys, an IT security risk and compliance management services provider, has introduced its new Security-as-as-Service platform at RSA Conference USA 2011.
The new platform is expected to host the QualysGuard IT security and compliance Software-as-a-Service (SaaS) suite of applications in the cloud.
The new security-as-a-service platform provides an integrated framework with new functionality in all Qualys security and compliance applications, said the company.
Standards-based integration and middleware ties together the browser, all Qualys applications, six platform services and engines, the user’s security and compliance data, scanners, and the QualysGuard KnowledgeBase.
The new platform enables users to get prioritised job management, modular services, dynamic analysis and reporting capability, and support for physical and virtual appliances.
Qualys chairman and CEO Philippe Courtot said the new backend and injection of open source technologies combined with the Web 2.0 front end has been in the making for over two years.
Courtot said: "Unlike with enterprise software, our SaaS implementation allows us to bring these new performance capabilities and major enhancements transparently to our existing users."
The new platform uses open source and commercial technologies, including a Web 2.0 user interface and a Java-based backend infrastructure. The browser integrates with the platform’s backend via a standard JSON API and Web Services API.
The platform’s data layer includes modules for scan management and scheduling, indexing and tagging, and data management and security.
The new Qualys platform is operational for Malware Detection 1.0 and SECURE Seal 1.0, and it will be in the Web Application Scanning 2.0 Beta.
Migration of QualysGuard Vulnerability Management, Policy Compliance and PCI Compliance services will occur in phases throughout 2011 to all subscribers, said the company.
Qualys also unveiled a new open source project to provide web application firewall technology, IronBee, along with the introduction of virtualised software-based scanner appliances for its QualysGuard Software-as-a-Service (SaaS) IT security and compliance platform.
In addition, the company released QualysGuard WAS 2.0 with enhancements that are expected to help customers catalog their web applications on a global scale and scan them for vulnerabilities.
