iViZ Partners With Qualys to Deliver Comprehensive Cloud-Based Web Application
iViZ Penetration Testing With Automated Scanning From QualysGuard WAS
Provides Effective Protection for Web Applications and Web Sites
REDWOOD CITY, CA -- (Marketwire) -- 02/13/13 -- Qualys Inc. (NASDAQ:
QLYS), a pioneer and leading provider of cloud security and
compliance management solutions, today announced its partnership with
iViZ, the industry's premier cloud-based penetration testing service
for web applications, to help companies ensure and validate the
security of their web applications and web sites. The partnership
combines the highly automated testing of QualysGuard Web Application
Scanning (WAS) with iViZ Penetration Testing Technology, coupled with
comprehensive manual testing to provide organizations with high
quality, cost-effective, scalable solutions to effectively protect
web sites and web applications against possible attacks. The iViZ
service will provide a Zero False Positive Guarantee and Business
Logic Testing covering 100% of the Web Application Security
Consortium (WASC) classes.
The solution is aimed at solving the problem of the significant
shortage of trained security professionals that organizations need to
hire and retain to secure their web applications. Automated scanning
with false positive removal and Business Logic Testing will help
organizations solve the problem of scaling security testing without
hiring additional people.
Organizations are increasingly using web applications to work and
conduct business online and often store critical business and
customer data in their web applications. However, these applications
are often built using multiple technologies without security in mind,
leaving them vulnerable to attack. As a result, organizations need a
comprehensive web application strategy to protect against possible
"As web applications have become a focus for attackers, web
application security has become a priority for enterprises," said
Charles Kolodgy, research vice president for IDC's security products.
"But scanning and remediating web application vulnerabilities is
challenging because of their complexity and the sheer number of
custom web applications. Automated web application scanning combined
with manual testing can help organizations identify and validate
exploitable vulnerabilities. With this knowledge organizations can
pinpoint exactly what needs to be remediated."
With the new partnership, iViZ will use QualysGuard WAS to perform
automated web application scans, accurately cataloging and
discovering web application vulnerabilities for their clients. Then
iViZ will use its Penetration Testing technologies, combined with
manual validation of the findings, and perform business logic testing
to deliver comprehensive web application testing, helping customers
remediate any issues. Comprehensive reports will be delivered to
customers through the iViZ secure web portal, including an executive
summary of the results and scope of testing with full details.
"Consultant-based penetration testing is not just costly, but is also
impossible to scale since there aren't enough humans on earth to test
the 600 million online websites. The strategic partnership of Qualys
and iViZ aims to solve this big problem by providing a high quality,
scalable and affordable cloud-based offering to secure and remediate
web applications globally," said Bikash Barai, CEO and co-founder of
"Web applications have become the primary target of cyber attacks and
present a difficult challenge for organizations due to the cost and
complexity required to secure and protect them," said Philippe
Courtot, chairman and CEO for Qualys. "Using QualysGuard WAS to
quickly and easily scan web applications along with the penetration
testing services from iViZ provides organizations with a
comprehensive solution for finding and remediating security
vulnerabilities at a cost they can afford."
To learn more about the iViZ web application security solution, visit
iViZ Security is industry's first cloud-based penetration
testing service for web applications. Unlike the scanners, which lack
in quality, and the consultants, who are expensive, iViZ delivers
consultant-grade, quality testing in a SaaS-based, cost effective
subscription model. iViZ provides a "Zero False Positives Guarantee"
and advanced business logic testing by leveraging its patent pending
"hybrid approach" that integrates automation with manual testing by
security experts. More than 300 customers worldwide use iViZ for
greater quality, scalability and cost effectiveness.
Qualys Inc. (NASDAQ: QLYS), is a pioneer and leading
provider of cloud security and compliance solutions with over 6,000
customers in more than 100 countries, including a majority of each of
the Forbes Global 100 and Fortune 100. The QualysGuard Cloud Platform
and integrated suite of solutions helps organizations simplify
security operations and lower the cost of compliance by delivering
critical security intelligence on demand and automating the full
spectrum of auditing, compliance and protection for IT systems and
web applications. Founded in 1999, Qualys has established strategic
partnerships with leading managed service providers and consulting
organizations, including Accuvant, BT, Dell SecureWorks, Fujitsu,
NTT, Symantec, Verizon, and Wipro. The company is also a founding
member of the Cloud Security Alliance (CSA).
For more information, please visit www.qualys.com.
Qualys, the Qualys logo and QualysGuard are proprietary trademarks of
Qualys, Inc. All other products or names may be trademarks of their
The Bateman Group for Qualys
Press spacebar to pause and continue. Press esc to stop.