Information Security reporter, Neil Roiter speaks with the director of the information security architecture group, Victor Hsiang of TransUnion. Victor shares how the Qualys Software-as-a-Service (SaaS) model has enabled TransUnion, a global consumer credit reporting bureau, to streamline and easily extend its vulnerability management program to many locations.
"The product approach requires individual purchases of the license at each location, purchasing a platform to load licenses on and administration of that platform, then the care and feeding of it," says Victor Hsiang, director of TransUnion’s information security architecture group. "With the service approach, from a corporate perspective, we can pick up the cost of Qualys and absorb the business units into the whole process."
Hsiang will beta test the Policy Compliance module at TransUnion, and expects it to integrate with his group’s program of using the vulnerability management service and a central database to certify systems through a cycle of vulnerability scanning, ticketing and remediation.
"We won’t have to reinvent the wheel; the compliance module fits into the architecture we’ve developed for tracking and fixing vulnerabilities," says Hsiang.
Click here to read full interview.