cis – Network Security Blog

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on August 9, 2017

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

This release includes new policies and updates covering:

New CIS versions for Apache HTTP Server, Solaris, Microsoft Windows 2016, centOS, Microsoft IIS, Oracle Linux, and Red Hat Enterprise Linux
New DISA STIG policies for Red Hat Enterprise Linux and Windows 2016
New Security & Configuration Policies for IIS, MS SQL Server 2016
New Mandate mappings for CIS Critical Security Controls & First Five CIS Controls
Several updates to minor versions for Vendor Recommended and CIS policies

For GDPR Readiness, You Need Visibility into Your IT Assets

Posted by Juan C. Perez in Qualys News, Qualys Technology on May 17, 2017

The looming deadline for complying with the EU’s General Data Protection Regulation (GDPR) is shining the spotlight on a foundational InfoSec best practice: A comprehensive IT asset inventory.

The reason: GDPR places strict requirements on the way a business handles the personally identifiable information (PII) of EU residents. For example, companies must know what PII they hold on these individuals, where it’s kept, with whom they’re sharing it, how they’re protecting it, and for what purposes it’s being used.

An organization can’t expect to comply with GDPR if it lacks full visibility into the IT assets — hardware and software — that it’s using to process, transmit, analyze and store this data.

“If you don’t know what IT assets you’ve got, how can you effectively find the data on your network that you need to meet GDPR requirements?” said Darron Gibbard, Qualys’ Chief Technical Security Officer for the EMEA region, during a recent webcast.

No Comments
Permalink
Tags: asset inventory, asset management, assetview, cis, gdpr, regulations

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on May 11, 2017

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

This release includes new policies and updates covering:

Initial coverage for DISA STIG on Windows
SCM for Windows Server 2016
New CIS versions for CentOS, Windows Server 2008 R2/2012 R2
Several updates to minor versions for Vendor Recommended and CIS policies.

No Comments
Permalink
Tags: cis, DISA, library, pc, product news, STIG

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on March 27, 2017

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

This release includes new policies and updates covering: Docker, Oracle Enterprise Linux, Red Hat Enterprise Linux, and Windows Server 2012 R2.

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on February 13, 2017

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

This release includes new policies and updates covering: MySQL, Amazon Linux, CentOS, Microsoft IIS, and Microsoft Windows.

Continue reading …

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on February 2, 2017

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

In Q4 2016, Qualys added new policies for CIS as well as Qualys Recommended policies, and provided updated versions for minor changes to a number of CIS policies.

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on June 23, 2016

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

No Comments
Permalink
Tags: cis, content, library, pc, policy library

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on April 18, 2016

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

No Comments
Permalink
Tags: cis, library, notification, pc, policy library

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on February 12, 2016

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

No Comments
Permalink
Tags: cis, content, library, pc, policy library

Qualys Policy Compliance Notification: Policy Library Update

Posted by Tim White in Qualys Technology on December 21, 2015

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.

No Comments
Permalink
Tags: cis, content, library, pc, policy library