Qualys has announced it is offering free 30-day access to the Qualys Enterprise TruRisk Platform to aid organisations in efficiently discovering and classifying internet-facing and internal-facing assets, and prioritising vulnerabilities for swift and safe remediation, aligning with the UK’s National Cyber Security Centre (NCSC) 5-7 days guidance.
NCSC recently released guidance recommending patching vulnerabilities for internet-facing services and software within five days and non-external-facing vulnerabilities within seven days. Many organisations find it challenging to accurately discover all their assets, specifically those that are internet-facing, efficiently measure and prioritise the risk, and then remediate it. Anonymised customer data from the Qualys Threat Research Unit (TRU) indicates the median time to remediate (MTTR) for the average organisation was 29 days. In contrast, the median time to weaponise (MTTW) was just seven days.
The free access to the Qualys Enterprise TruRisk Platform allows organisations to remediate issues in as little as 30 minutes and within seven days for full alignment. Incorporating Vulnerability Management Detection and Response (VMDR), CyberSecurity Asset Management, and Patch Management, the Qualys offering helps organisations to:
- Identify External Assets: Accurately discover both internal and external assets within your environment and flag End of Life (EOL) and End of Support (EOS) software and devices.
- Conduct Efficient Risk-based Prioritisation: Vulnerabilities are prioritised by their TruRisk score and automatically mapped to necessary updates to simplify IT workflows for a customised NCSC risk and remediation view.
- Automate Patching: The gap between security and IT teams is closed with Qualys Patch Management. Qualys brings these groups together to safely prioritise and deploy patches automatically to help customers update by default within seven days.
“Given the rate at which adversaries are weaponising vulnerabilities, it is almost impossible for most organisations, with their complex infrastructures and patch workflows, to keep up,” said Hadi Jaafarawi, Managing Director – Middle East, Qualys. “By offering the Qualys Enterprise TruRisk Platform free for 30 days, organisations can avail of a solution that streamlines asset discovery, takes the guesswork out of understanding which vulnerabilities are the riskiest and helps with prioritisation, so they can mitigate risks quickly and efficiently to safeguard their businesses.”
To sign up for this free 30-day service, visit qualys.com/forms/vmdr-ncsc.