Qualys VMDR for ITSM

Welcome to Qualys Enterprise TruRisk™ Platform ! We’ll show you how to use the Qualys Core and Qualys VMDR applications.

Qualys VMDR for the ServiceNow application comprises an application that manages the connection between ServiceNow and Qualys - Qualys Core. Once the connection is configured, you can define import configurations, import schedules, incidents, and related event detection rules, and service-level agreement (SLA) definitions in the Qualys Core application. You can also configure detection rules for Qualys-patchable vulnerabilities, which will automatically create change requests and patch jobs in Qualys Patch Management. This helps in faster remediation and thus helps to meet the SLAs to reduce risk within the organization.

Qualys VMDR

The Qualys VMDR is an application that tracks open vulnerabilities and maps remediation tickets to the respective resolver groups. It serves as a bridge between the Security and IT teams, automating workflows to minimize manual intervention.

A Qualys Vulnerability Management, Detection, and Response (VMDR) subscription includes both Qualys VMDR and the Qualys Core app.

Key Features

The following are the key features of Qualys VMDR for ServiceNow:

  • Automated data import from Qualys VMDR, File Integrity Monitoring (FIM), and  Patch Management with predefined criteria- on demand or through a defined schedule.

    FIM incidents and related events can be configured from Qualys Core version 1.2.0 and later

  • Automated ticket creation, identification or matching of CIs with ServiceNow CMDB, assignment to rightful owners, and closure on remediation.

  • Vulnerability groups are based on multiple parameters, including operating system, severity, and Qualys TruRisk score, among others. This helps reduce the number of incidents that IT teams need to track and remediate.

  • A custom SLA can be defined for open vulnerabilities based on Qualys' real-time threat indicators (RTIs) and Qualys VMDR 2.0 with TruRisk.

  • Automated Change request creation, approval enforcement, and integration with Qualys patch management

  • Integrated Exception Management and false positive process to offer a comprehensive and complete VM solution.

  • The rescan feature measures the impact of patching. If Qualys identifies the vulnerability as Fixed, based on the outcome of the consecutive scan or agent data, the incidents are automatically closed.

  • Dynamic dashboards and reports can be created to display data and status based on the vulnerability status, SLA monitoring, critical assets with RTIs, and Asset Risk Scoring.

Get Started

Get started with Qualys Core and Qualys VMDR applications using the following steps:

  1. Install the App
  2. Upgrade the App

Related Topic

Prerequisites

User Roles and Permissions