CSAA Insurance Group has planned and executed a Vulnerability Management program reboot to meet the expectations of VM as a strategic part of security operations. This talk explains a phased redeployment of the Qualys Cloud Platform, the Qualys Cloud Agent, and a look at the implementation changes that were made to deliver CSAA the ability to consume security and compliance data at the necessary scale and with immediacy needed to secure modern IT infrastructure, then report critical accurate and relevant findings to a variety of end users including executives, application, audit and IT teams.
Brian Canaday, IT Security Analyst / Engineer, CSAA Insurance
Operationalizing the VM Process from Detection to Remediation
This talk will demonstrate the new features in Qualys Cloud Platform 10.0, and introduce the new Patch Management app. Qualys Cloud Platform 10.0 introduces a new customizable Vulnerability Management Dashboard for faster pivoting through vulnerability data, Custom Remote Detections for developing your own signatures, and Unified Dashboarding for mixing and matching widgets from multiple apps into a single view. Our new Patch Management app now lets you detect missing patches on a system and patch your entire environment with just a few clicks, using existing Qualys Cloud Agents. Learn how vulnerability data is leveraged by Patch Management in security patch detections, allowing you to quickly target and patch a CVE without the need to track down the specific security bulletins.
Jimmy Graham, Director of Product Management, Qualys
Define Cloud Agent. Understand the benefits of using the Cloud Agent. Get the supported applications. Deploy Cloud Agents in IaaS providers. Understand the Cloud Agent snapshot. See what the agent collects.
Understand the Cloud Agent Lifecycle: Provisioning, Clone/Duplicate UUID detection and re-provisioning, Status Update, Agent Version Upgrading, Data Collection and Upload, Agent-Platform Synchronization. Find the Agent ID (UUID), why duplicate ids happen, and provisioning on a gold image. Explain the Status Interval: Manifests, Configuration profiles, re-provisioning, re-sync, uninstallation commands agent versioning in Qualys.