Welcome!

News Feed Item

Qualys Releases Support for Singapore MAS IBTRM Guidelines

Qualys Policy Compliance Solution Addresses a Wide Spectrum of Recommendations to Help Financial Institutions Adhere to Internet Banking Technology Risk Guidelines

SINGAPORE -- (Marketwired) -- 07/21/14 -- RSA Conference Asia Pacific & Japan -- Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of cloud security and compliance solutions, today announced its now supports the Monetary Authority of Singapore (MAS) Internet Banking Technology Risk Management (IBTRM) compliance guidelines to help customers in automated assessment and auditing of the technical requirements of MAS IBTRM.

To achieve business objectives and meet customer requirements, financial institutions depend on IT technology infrastructure to perform business activities and operations. This infrastructure poses a number of challenges to these organizations in terms of evolving cyber threats, compliance requirements and securing key configurations. The MAS IBTRM guidelines provide banks and financial institutions with a sound framework of risk management principles and security best practices to address basic security configurations needs, evolving technology risks and compliance requirements.

Qualys Policy Compliance (PC), a cloud service that performs automated security configuration assessments on IT systems throughout the network helps address a wide spectrum of the technical recommendations provided by the Compliance Checklist for IBTRM including:

  • Automated compliance scanning using QualysGuard infrastructure used for vulnerability scanning.

  • Continuously maintained knowledgebase is based on CIS and NIST standards and maps to many frameworks & regulations.

  • Improved Policy Editor to construct policies from controls and map them to internal standards and external regulations.

  • Compliance report-templates to show compliance by policy, by control, and by host.

  • Exception management workflow for creating, evaluating, and approving risk acceptance of policy violations.

  • Collaboration capabilities to review policies and approve exceptions with internal and external auditors.

Built on the world's leading Cloud security and compliance platform, Qualys PC saves companies from the substantial cost, resource and deployment issues associated with traditional software products. Known for its fast deployment, ease of use, unparalleled scalability, and rich integration with enterprise GRC systems, Qualys PC helps organizations around the world adhere to compliance standards mandates including PCI- DSS, HIPAA, FFIEC, NERC, COBIT, ISO 27011 as well as security standards such as NIST and CIS.

"Internet banking provides a number of benefits to customers around the world, however it also poses technology risks for financial institutions which increasingly rely on the Internet to operate their business," said Philippe Courtot, CEO for Qualys, Inc. "Qualys Policy Compliance helps IT security organizations meet the demands of internal and external auditors by automating vulnerability and compliance management processes to improve an effectiveness in reducing risk and providing proof of compliance demanded by auditors across multiple compliance initiatives such as MAS IBTRM."

Additional Resources

About Qualys, Inc.
Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of cloud security and compliance solutions with over 6,700 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100. The QualysGuard Cloud Platform and integrated suite of solutions help organizations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including Accuvant, BT, Dell SecureWorks, Dimension Data, E-Cop, Fujitsu, HCL, NTT, Symantec, Verizon and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA) and a Premium Corporate Member of OWASP. For more information, please visit www.qualys.com.

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

Latest Stories
Big Data engines are powering a lot of service businesses right now. Data is collected from users from wearable technologies, web behaviors, purchase behavior as well as several arbitrary data points we’d never think of. The demand for faster and bigger engines to crunch and serve up the data to services is growing exponentially. You see a LOT of correlation between “Cloud” and “Big Data” but on Big Data and “Hybrid,” where hybrid hosting is the sanest approach to the Big Data Infrastructure pro...
A critical component of any IoT project is what to do with all the data being generated. This data needs to be captured, processed, structured, and stored in a way to facilitate different kinds of queries. Traditional data warehouse and analytical systems are mature technologies that can be used to handle certain kinds of queries, but they are not always well suited to many problems, particularly when there is a need for real-time insights.
"My role is working with customers, helping them go through this digital transformation. I spend a lot of time talking to banks, big industries, manufacturers working through how they are integrating and transforming their IT platforms and moving them forward," explained William Morrish, General Manager Product Sales at Interoute, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
In his session at 18th Cloud Expo, Sagi Brody, Chief Technology Officer at Webair Internet Development Inc., and Logan Best, Infrastructure & Network Engineer at Webair, focused on real world deployments of DDoS mitigation strategies in every layer of the network. He gave an overview of methods to prevent these attacks and best practices on how to provide protection in complex cloud platforms. He also outlined what we have found in our experience managing and running thousands of Linux and Unix ...
Continuous testing helps bridge the gap between developing quickly and maintaining high quality products. But to implement continuous testing, CTOs must take a strategic approach to building a testing infrastructure and toolset that empowers their team to move fast. Download our guide to laying the groundwork for a scalable continuous testing strategy.
With 15% of enterprises adopting a hybrid IT strategy, you need to set a plan to integrate hybrid cloud throughout your infrastructure. In his session at 18th Cloud Expo, Steven Dreher, Director of Solutions Architecture at Green House Data, discussed how to plan for shifting resource requirements, overcome challenges, and implement hybrid IT alongside your existing data center assets. Highlights included anticipating workload, cost and resource calculations, integrating services on both sides...
In his session at @DevOpsSummit at 19th Cloud Expo, Yoseph Reuveni, Director of Software Engineering at Jet.com, will discuss Jet.com's journey into containerizing Microsoft-based technologies like C# and F# into Docker. He will talk about lessons learned and challenges faced, the Mono framework tryout and how they deployed everything into Azure cloud. Yoseph Reuveni is a technology leader with unique experience developing and running high throughput (over 1M tps) distributed systems with extre...
"We are a well-established player in the application life cycle management market and we also have a very strong version control product," stated Flint Brenton, CEO of CollabNet,, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
"Software-defined storage is a big problem in this industry because so many people have different definitions as they see fit to use it," stated Peter McCallum, VP of Datacenter Solutions at FalconStor Software, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
"Operations is sort of the maturation of cloud utilization and the move to the cloud," explained Steve Anderson, Product Manager for BMC’s Cloud Lifecycle Management, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
The cloud competition for database hosts is fierce. How do you evaluate a cloud provider for your database platform? In his session at 18th Cloud Expo, Chris Presley, a Solutions Architect at Pythian, gave users a checklist of considerations when choosing a provider. Chris Presley is a Solutions Architect at Pythian. He loves order – making him a premier Microsoft SQL Server expert. Not only has he programmed and administered SQL Server, but he has also shared his expertise and passion with b...
Unless your company can spend a lot of money on new technology, re-engineering your environment and hiring a comprehensive cybersecurity team, you will most likely move to the cloud or seek external service partnerships. In his session at 18th Cloud Expo, Darren Guccione, CEO of Keeper Security, revealed what you need to know when it comes to encryption in the cloud.
We're entering the post-smartphone era, where wearable gadgets from watches and fitness bands to glasses and health aids will power the next technological revolution. With mass adoption of wearable devices comes a new data ecosystem that must be protected. Wearables open new pathways that facilitate the tracking, sharing and storing of consumers’ personal health, location and daily activity data. Consumers have some idea of the data these devices capture, but most don’t realize how revealing and...
What are the successful IoT innovations from emerging markets? What are the unique challenges and opportunities from these markets? How did the constraints in connectivity among others lead to groundbreaking insights? In her session at @ThingsExpo, Carmen Feliciano, a Principal at AMDG, will answer all these questions and share how you can apply IoT best practices and frameworks from the emerging markets to your own business.
Ask someone to architect an Internet of Things (IoT) solution and you are guaranteed to see a reference to the cloud. This would lead you to believe that IoT requires the cloud to exist. However, there are many IoT use cases where the cloud is not feasible or desirable. In his session at @ThingsExpo, Dave McCarthy, Director of Products at Bsquare Corporation, will discuss the strategies that exist to extend intelligence directly to IoT devices and sensors, freeing them from the constraints of ...