The Qualys Cloud Platform provides features ready-to-use for the assessment and management of risk internal and third party,
Download the free guide
Boost your gains
as well as to the reporting requirements of the Regulation GDPR.
LONDON InfoSecurity Europe 06 June 2017 Qualys, Inc. (NASDAQ: QLYS), a leading supplier of solutions for security and compliance in the Cloud, ad content, workflows, and resource reporting dedicated via its Cloud-based platform to provide organizations with continuous visibility over their IT assets and an assessment of the data collection and the associated risks so that they can comply with the (GDPR), general Regulation on data protection in the European Union. The platform Qualys offers in addition to the permanent protection of the personal data of the companies residing in different IT environments across the world, as well as their suppliers.
(Qualys will showcase these features to ensure compliance with the Regulations GDPR at the conference InfoSecurity Europe Booth #E20)
The Regulation GDPR requires companies to track and properly protect the personal data of their european customers under the penalty of sanctions and fines at different levels. By following and classifying IT assets that contain these data and adopting global programmes of governance and security, the companies may meet the requirements of the GDPR meant to identify, classify and limit access to personal data protected. Qualys combines multiple security solutions and compliance proven in a platform in the Cloud that allows companies to get a holistic view of risks both internal, as related to data processors third parties. It also offers a continuous follow-up of the state of compliance with the Regulation GDPR.
“The landscape of data processing has undergone very great changes since 1995, and the new Regulation GDPR is for all the companies an opportunity to harmonize the preservation of data,” says Jamal Dahmane, Head of the Information Systems Security of the Group Essilor. “In addition to the deployment of the process and the team required to support ongoing compliance with the Regulations, GDPR, we must have tools to have better visibility and be able to react at the right time. ”
“In the era of global and digital economy, businesses must think about how to protect their data and those of their customers,” said Philippe Courtot, Chairman and CEO of Qualys, Inc. “It is crucial for businesses that handle data generated within the european Union or belonging to clients, how to ensure the visibility and security of their IT assets, data, and supply chain. This is precisely what the solution Qualys Cloud Platform through a high level of accuracy and sizing, for a cost substantially lower than that of business software dedicated. ”
Solution Qualys for compliance with the Regulation GDPR
The Qualys Cloud Platform integrates more than 10 applications through which businesses can comply effectively with the main obligations of the Regulation GDPR based on a global visibility and continuous, as well as tools to secure the data and processes are hosted on their IT assets and suppliers :
Visibility on the assets The assets most at risk are those that go unnoticed if well as complete visibility into IT environments is crucial for the planning of the compliance with the Regulation GDPR, in particular for many of the mobile elements participating in the collection and processing of personal information, which must be identified and tracked. AssetView stores and indexes both the IT data and security, including the types of installed software, so that companies can search, find, follow, and tag the critical assets that hold personal data ; whether on site, on mobile assets or in the Cloud. Thus, the teams in charge of security can estimate the scale and the scope of the plan required to comply with the GDPR.
Visibility on the data Protecting personal information is at the heart of Regulation GDPR. Once it has complete visibility of its IT assets, the company may use the information to map data and a better appreciation of the required technical controls for securing sensitive data. The service Policy Compliance (PC) allows you to validate and track access to files and databases hosted on these systems and to prevent exposures of the security configuration, which reduces the risk of unauthorized access.
Visibility on suppliers The GDPR requires that companies ensure the security of personal data stored in a supplier, in public clouds, platforms, SaaS as well as among partners and other service providers, the two parties involved are co-responsible in case of dispute. Through the questionnaire the SAQ on the security assessment (Security Assessment Questionnaire) proposed by Qualys, organizations can adapt and accelerate the security audits of their suppliers to check if they conform well to the Regulation GDPR. A model questionnaire SAQ-specific GDPR allows you to automate the distribution, management and collection of responses.
Analysis of process – compliance with The Regulation GDPR requires the organization, deployment, and analysis of process controls, policies and procedures for information security and data classification, as well as a thorough evaluation of the data collection and the associated risks. The questionnaire SAQ automates the entire process of data collection by all teams involved. Based on a model questionnaire SAQ ready-to-use to evaluate the capacity of compliance with the Regulation GDPR, companies can control the location, user access, and security of all personal data hosted on their network.
Support of the security program required by the Regulation GDPR GDPR also imposes technical and organisational measures to protect personal data against unauthorised access, misuse or incorrect use, damage and loss. With Qualys Vulnerability Management (VM) and PC, the enterprises have continuous visibility which allows them to apply their own security controls with a reporting mandate basis ready to meet the requirements of Regulation GDPR. As to the questionnaire SAQ, it allows to evaluate the organizational measures to be taken to enforce the policies.
Qualys, Inc. (NASDAQ : QLYS) is the leading provider of security solutions and compliance in the Cloud with more than 9 300 clients in more than 100 countries, including a majority of the companies present in the rankings, Fortune 100 and Forbes Global 100. The Qualys Cloud Platform and its integrated suite of solutions helps businesses simplify security operations and lower the cost of compliance. This platform delivers an on-demand service in security intelligence and automates the full spectrum of auditing, compliance and protection of information systems and Web applications. Founded in 1999, Qualys has signed strategic agreements with suppliers of facilities management services (” managed services “) and consulting firms of the first order such as Accenture, BT, Cognizant Technology Solutions, Deutsche Telekom, Fujitsu, HCL Technologies, HP Enterprise, IBM, Infosys, NTT, Optiv, SecureWorks, Tata Communications, Verizon and Wipro. Qualys is also a founding member of the Cloud Security Alliance (CSA).
For more information, visit www.qualys.com
Download the free guide
Boost your gains