Upload File

qualysguard infoday 2013 - qualys questionnaire

11
www.rac.cz Risk Analysis Consultants V060420 Qualys Questionnaire RAC QualysGuard InfoDay 2013 1 Systém pro vytváření, správu a centrální analýzu dotazníků

Upload: risk-analysis-consultants-sro

Post on 18-Nov-2014

455 views

Category:

Documents


5 download

Report

DESCRIPTION

 

TRANSCRIPT

Page 1: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

Qualys Questionnaire

RAC QualysGuard InfoDay 2013 1

Systém pro vytváření, správu a centrální analýzu dotazníků

Page 2: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

Qualys Questionnaire

RAC QualysGuard InfoDay 2013 2

Page 3: QualysGuard InfoDay 2013 - Qualys Questionnaire

Time line

Page 4: QualysGuard InfoDay 2013 - Qualys Questionnaire

Questionnaire – Use Cases

Policy awarenessDistribute policies to defined groups of user, have them read and approve and track the progress

Vendor Risk AssessmentInvolve, vendor contact, vendor manager, Vendor risk team to assess vendor tier level and risks

Application Risk AssessmentBuild an Application Risk Assessment as an integrated part of the SDLC process and involve Application owners, Risk Team, Security Team.

4

Page 5: QualysGuard InfoDay 2013 - Qualys Questionnaire

Questionnaire - Solution

Policy awareness

Vendor Risk Assessment

Application Risk Assessment

5

Ad hoc questionnaire

Self Service Questionnaires

Campaign

Workflow

API Reports

Use Cases

Page 6: QualysGuard InfoDay 2013 - Qualys Questionnaire

QualysGuard Questionnaire

Design questionnaires

Collect answers

Analyze and report

Page 7: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

Vytváření šablon dotazníků

RAC QualysGuard InfoDay 2013 7

Page 8: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

Vyplňování dotazníků

RAC QualysGuard InfoDay 2013 8

Page 9: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

Přehledy dotazníků

RAC QualysGuard InfoDay 2013 9

Page 10: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

Dashboard

RAC QualysGuard InfoDay 2013 10

Page 11: QualysGuard InfoDay 2013 - Qualys Questionnaire

ww

w.ra

c.cz

Risk

Ana

lysis

Con

sulta

nts

V060

420

RAC QualysGuard InfoDay 2013 11

Možnosti nástrojeNástroj pro rozšíření modulu PC o ne-technické opatřeníPoužita databáze z komerčního zdroje UCF (Unified Compliance Framework), obsahuje desítky norem a regulativůPřehledné prostředí, grafy stavů, delegování odpovědíProvázanost odpovědí mezi jednotlivými normami

NevýhodyZatím pouze Beta 1.1 !, ne všechno funguje, např . downloadNení nástroj na vytváření vlastní dotazníků, pouze XML, není dokumentaceOmezené možnosti odpovědí, nejsou odpovědi typu „aplikováno částečně“Není propojení s PC, pouze samostatně použito v PCI ale jiná verze modulu

Shrnutí Questionnaire


QualysGuard(R) Release Notes€¦ · Qualys Release Notes 8 Can I update the grade without a new scan? Yes. From your certificates list, choose Certificate Info from the Quick Actions

QualysGuard InfoDay 2013 - Asset Management

Qualys Cloud Suite 2 - Qualys Blog | Expert network ... … · 1 Qualys Cloud Suite 2.18 . We’re excited to tell you about new features and improvements coming with Qualys Cloud

Qualys CloudView User Guide · Welcome to Qualys CloudView! We’ll help you get acquainted with the Qualys solutions for securing your AWS resources using the Qualys Cloud Security

QualysGuard InfoDay 2013 - QualysGuard Security & Compliance Suite supporting SANS TOP 20 Critical Controls

Automate Your Internet Security QualysGuard · The QualysGuard API Module allows access to two essential functions of QualysGuard: QualysScan : assesses the vulnerability of a host

QualysGuard InfoDay 2012 - QualysGuard VM ve společnostech skupiny Veolia Voda ČR

QualysGuard(R) Evaluator’s Guide - Europe5 | … QualysGuard QualysGuard UI 6 QualysGuard Quick Tour Searchable Data Lists Searchable data lists allow you to easily find and take

apping Q g s data se C urity standard re Q uire M ents©kismertetők/QG_PCI_Coverage.pdf · QualysGuard Suite consists of QualysGuard Vulnerability Management, QualysGuard Policy

QualysGuard InfoDay 2013 - QualysGuard RoadMap for H2-2013/H1-2014

QualysGuard InfoDay 2014 - WAS

infoday workbook

QualysGuard Policy Compliance - Qualys, Inc

QualysGuard Eval

QualysGuard ve stručnosti

QualysGuard InfoDay 2012 - Malware Detection Service – Enterprise Edition

QualysGuard InfoDay 2012 - Secure Digital Vault for Qualys

Securing Amazon Web Services with Qualys (R) · PDF fileSecuring AWS with Qualys Introduction 5 Qualys Support for AWS Qualys AWS Cloud support provides the following features:---Secure

QualysGuard InfoDay 2014 - Policy compliance

QualysGuard Quick Tour

Automate Your Internet Security QualysGuard

Qualys WAS Web Application Report · Qualys provides the QualysGuard Service "As Is," without any warranty of any kind. Qualys makes no warranty that the information contained in

Qualys Gateway Service User Guide · Qualys Gateway Service (QGS) is a packaged virtual appliance developed by Qualys that provides proxy services for Qualys Cloud Agent deployments

Qualys Container Security User Guide...3 Table of Contents About this Guide..... 5 About Qualys ..... 5 Qualys Support

QualysGuard InfoDay 2014 - Vulnerability management

Presentazione infoday

QualysGuard InfoDay 2013 - Web Application Firewall

QualysGuard InfoDay 2013 - Nové funkce QG

Introduction to QualysGuard IT Risk SaaS Services to QualysGuard IT Risk SaaS Services Marek Skalicky, CISM, CRISC Regional Account Manager for Central & Adriatic Eastern Europe Qualys

Infoday. Imit

QualysGuard InfoDay 2012 - BrowserCheck

QualysGuard InfoDay 2014 - QualysGuard Web Application Security a Web Application Firewall

QUALYS, INC. - AnnualReports.co.ukannualreports.co.uk/HostedData/AnnualReportArchive/q/...Qualys, the Qualys logo and QualysGuard, and other trademarks and service marks of Qualys

QualysGuard InfoDay 2014 - QualysGuard Continuous Monitoring

ForeScout® Extended Module for Qualys® VM Configuration ......Qualys Cloud Platform, formerly known as QualysGuard, is a cloud–based suite of IT security and compliance solutions