Cloud-based IT, security and compliance solutions provider Qualys has debuted a comprehensive remediation solution called TruRisk Eliminate at Black Hat 2024.
Qualys says TruRisk Eliminate extends beyond patching to help organisations reduce risk further. It provides additional remediation methods when patching isn’t feasible, including patchless patching, targeted isolation, and other mitigation strategies to ensure robust protection.
The company says patch management is a core capability for remediating vulnerabilities, but it is not always the most viable or only option. Addressing all vulnerabilities is increasingly difficult due to potential business disruptions from patching, the unavailability of patches for zero days, and the limitations of traditional patch management tools that rely solely on agents. At-risk assets that can’t be patched present vulnerabilities exploitable by hackers, leading to ransomware and data breaches.
“Five years ago, Qualys disrupted the vulnerability management space with integrated patch management to help organisations streamline and accelerate threat remediation,” said Qualys President and CEO Sumedh Thakar. “Now, we’re taking the next step with TruRisk Eliminate, offering businesses innovative ways to mitigate risk even when patching isn’t an option. With TruRisk Eliminate, we provide enterprises with peace of mind through powerful solutions that address their most pressing threats and ultimately de-risk their businesses.”
Qualys says its new product balances business continuity with risk reduction by:
Mitigating and Isolating the Risk Without Patching or Rebooting.
TruRisk Mitigate deploys advanced risk mitigation controls based on the recommendations of vendors, CISA, and the Qualys Threat Research Unit. It empowers businesses to swiftly implement configuration changes via advanced scripting for Linux and Windows, ensuring robust protection even when patches are unavailable.
TruRisk Isolate empowers teams to proactively quarantine risky assets to prevent security incidents from spreading within the network. It helps security and IT teams manage risk proactively instead of relying on the reactionary EDR approach of quarantining assets post-incidents.
Integrating with IT operations and ticketing workflows.
This reduces risk and mean time to remediate by leveraging out-of-the-box integrations with ITSM tools like ServiceNow and JIRA along with dynamic vulnerability and asset tagging. This approach drives patching, mitigation, and isolation directly through IT operations processes and solutions in a controlled manner that is fully-integrated with Qualys vulnerability management, detection and response, and patch management.
Offering rule-based workflow orchestration.
With the integrated Qualys Qflow capability, teams save valuable time and resources. This feature automates complex, multi-decision risk remediation tasks, such as executing mitigations for CISA KEVs when patches are unavailable and only un-quarantining high-risk assets upon closing of vulnerabilities.
TruRisk Eliminate will be available in September.
