New Qualys Add-on for Splunk Enterprise and Splunk Enterprise Security provides real-time security analytics on Qualys data for breach detection and response
Qualys has signed a technology alliance with Splunk to help enterprises visualize and better protect their IT infrastructure from cyber attacks. The Qualys App for Splunk Enterprise provides customers with real-time threat intelligence and alerts in a single dashboard to more efficiently secure their IT infrastructure. The Qualys Add-on for Splunk has been submitted for Splunk certification and enables visualizations of Qualys data within Splunk Enterprise and Splunk Enterprise Security.
“Now, customers can make Qualys’ data immediately actionable in Splunk Enterprise Security, further reinforcing Splunk’s role as the nerve center for our customers’ most demanding environments and security requirements.” said Haiyan Song, senior vice president of security markets, Splunk.
The Qualys Add-on and Qualys App for Splunk Enterprise are compliant with Splunk’s Common Information Model (CIM), allowing Qualys data to be easily ingested into Splunk Enterprise and Splunk Enterprise Security and correlated with other industry feeds. The add-on provides extraction, transformation and load (ETL) capabilities to synchronize up-to-date Qualys VM data into Splunk Enterprise Security using the Qualys Cloud Platform APIs.
Philippe Courtot, Chairman and CEO, Qualys, said, “Through this alliance with Splunk, we can now provide customers complete visibility into their IT systems in a Splunk-friendly format to quickly identify where vulnerabilities may exist along with contextual awareness so they can more effectively take action against potential threats.”
