MetricStream, Qualys Partnership Brings Security and Risk Intelligence to IT-GRC

MetricStream, an enterprise-wide governance, risk and compliance solutions provider, and Qualys, a provider of Software-as-a-Service IT security, risk and compliance management solutions, announced the integration of MetricStream IT-GRC Solution with QualysGuard Vulnerability Management (VM).

The integrated solution provides a centralized and scalable framework to efficiently manage IT network vulnerabilities across departments, business units and locations. A single robust framework allows for automatic monitoring and capturing of all asset and network vulnerabilities, and routes them through a systematic process of investigation and remediation. This integration enables customers to quickly identify and report on the vulnerabilities affecting business critical assets, map security issues to business applications, and aggregate and rollup risk information across their enterprise for proactive mitigation.

QualysGuard VM locates and identifies network devices and applications, scans those devices and applications to detect vulnerabilities, and provides detailed information on the nature of those vulnerabilities. MetricStream IT-GRC solution imports this data in real time, and initiates immediate remedial action by assigning investigative responsibilities to the appropriate personnel. Automatic alerts ensure that action plans are carried out to closure, while advanced dashboards and reports provide in-depth visibility into the status of each case, enabling real-time tracking and trend analysis.

The MetricStream solution has been integrated with QualysGuard VM through MetricStream's intelligent connectors or Infolets which also enable seamless integration with SIEM, Log Management, Problem Management, Operations and Asset Management systems.