Expanded Monitoring for Qualys' Enterprise TruRisk Platform: Real-time detection of unauthorized access to sensitive data and continuous tracking of configuration changes on network devices to enhance security measures.
Qualys Introduces Enhanced File Integrity Monitoring Solution
Qualys, a leading provider of cloud-based security and compliance solutions, has announced the release of Qualys FIM 4.0. This new version includes significant enhancements such as real-time File Access Monitoring (FAM) and Agentless FIM, starting with FIM on network devices.
The introduction of FAM is particularly noteworthy, as it addresses a critical gap in security. High-frequency and high-risk file accesses can often go unnoticed without FAM, potentially leading to data breaches. By providing real-time visibility into file access and changes, Qualys FIM helps organizations detect unauthorized or suspicious activities, thus strengthening their security posture and aiding compliance with regulations.
Qualys FIM is designed to assist organizations in complying with a wide range of regulatory compliance mandates and frameworks. These include PCI DSS 4.0, HIPAA 2023, NERC CIP, GDPR, CCPA, NIST CSF 2.0, NIS2, and many others. Expanding FIM usage to network devices ensures complete visibility over networking infrastructure changes, a core compliance requirement that auditors may look for.
The new version of Qualys FIM also offers features to minimise alert fatigue. It enriches FIM with noise-cancelling technology and threat intelligence, making it easier to detect malicious or suspicious hashes. Moreover, it reduces analyst time by providing ready-to-use, fine-tuned profiles for compliance frameworks.
Qualys FIM provides an industry-leading solution, with both agent-based and agentless deployment options. For instance, Qualys FIM for Network Devices allows customers to enable FIM capabilities without installing a new FIM agent, utilizing the same Qualys agent. This means that customers can leverage the same scanners without needing to change configurations or provide new credentials.
In addition, Qualys FIM built-in automated incident management and compliance reporting with dynamic dashboards, designed especially for PCI DSS 4.0 and other regulations. PCI DSS 4.0 mandates File Access Monitoring (FAM) and File Integrity Monitoring (FIM) on network devices, making Qualys FIM a crucial tool for organisations aiming to meet these requirements.
FAM also allows for real-time alerts when critical files with sensitive data are accessed by unauthorized users. This feature is particularly important for detecting accidental or intentional modifications that may lead to unauthorized network access or security breaches.
Gartner research indicates that most firewall breaches are caused by misconfiguration, making it crucial to monitor for changes to configuration from a hardened baseline. Qualys FIM provides this monitoring, ensuring data integrity and helping organisations maintain a secure network environment.
In summary, Qualys FIM 4.0 offers significant improvements in security and compliance, with its real-time File Access Monitoring and Agentless FIM capabilities. By providing comprehensive visibility over network devices and aiding compliance with a wide range of regulations, Qualys FIM empowers SOC teams with the tools they need to maintain a secure and compliant network environment.
