Qualys Integration with AWS Security Hub 

Welcome to Qualys Cloud Platform, which offers solutions for securing your Cloud and traditional IT infrastructure. This guide discusses using Qualys to secure your Amazon AWS EC2 infrastructure.

Get acquainted with the Qualys solutions for integrating your AWS Cloud with the Qualys Cloud Security Platform here.

Qualys Integrated Security Platform

With Qualys Cloud Platform, you get a single view of your security and compliance in real time. If you are new to Qualys, we recommend you visit the Qualys Cloud Platform web page to learn more about our cloud platform

Qualys Support for AWS

You can now access Qualys vulnerability assessment findings in Amazon Security Hub. The Amazon Security Hub provides a comprehensive view of their accounts' high-priority security alerts and compliance status. By integrating Qualys Vulnerability Management (VM/VMDR) findings with Amazon Security Hub, you can get near real-time, up-to-date visibility of your security posture in the Amazon console. These findings, gained by the correlation of Qualys information with other data in Amazon Security Hub, allow customers to quickly detect risks in their AWS environments and take rapid, automated remedial actions.

Qualys AWS Cloud Features

Qualys AWS Cloud provides the following features:

• Secure EC2 Instances (IaaS) from vulnerabilities and check for regulatory compliance on OS and Applications (Database, Middleware)

  

• Gain continuous security using Cloud Agents embed them into AMIs to get complete visibility
• Identify vulnerabilities for public-facing IPs and URLs
• Secure Applications using Application Scanning and Firewall solutions
• Vulnerability Scan
• Supports all AWS global regions, including GovCloud
• Supports EC2 instances in Classic and VPC platform
• Qualys Cloud Agents certified to work in EC2

Qualys Sensors

Qualys sensors, a core service of the Qualys Cloud Platform, make extending your security throughout your global enterprise easy. These sensors are remotely deployable, centrally managed, and self-updating. They collect data and automatically transmit it to the Qualys Cloud Platform, which has the computing power to continuously analyze and correlate the information to help you identify threats and eliminate vulnerabilities.

Prerequisites

These options must be enabled for your Qualys user account.

• Qualys Applications: Vulnerability Management (VM/VMDR), Cloud Agent (CA). Ensure that you have executed scans and the scan reports (including vulnerability information) are available in your user account.
• Qualys Sensors: Virtual Scanner Appliances or Cloud Agents, as required
• Ensure API Access permission is enabled for the user account
• Manager or Unit Manager role
• AWS Security Hub must be enabled for the desired region

Quick Start Steps

Perform the following steps for integrating Amazon Web Services with Qualys .

1. Enabling Qualys Apps in Amazon Security Hub: AWS Security Hub (enabled for region) > Integrations > Qualys VM product > Enable this Integration (Accept findings). For details refer to Enabling Security Hub.
2. Configure Integration with Qualys using APIs to configure integration with Qualys Cloud Platform.
3. Configure Insights on AWS Console (Optional).

Additional Resources

Video Tutorials

• Vulnerability Management Detection and Response (3 mins)
• Policy Compliance Overview (14 mins)

Helpful Resources

• Qualys Training | Free self-paced classes, video series, and online classes
• Qualys Documentation | Getting started guides, quick references, API docs
• Qualys AWS EC2 Video Series | Learn how to discover and secure AWS assets