In This Article:
Qualys, a provider of cloud-based IT, security, and compliance solutions, has unveiled Policy Audit, an enhancement to its policy compliance solution.
The update introduces automated efficiencies aimed at reducing manual audit preparation time, the company claims.
Qualys Policy Audit can automatically map evidence to frameworks such as PCI DSS 4.0, DORA, NIST, CMMC, and FedRAMP.
The solution offers comprehensive coverage across 450 technologies, more than 1,000 pre-built policies, and more than 90 frameworks, ensuring continuous compliance and reducing the risk of audit failures.
The system provides several benefits including continuous audit readiness, by automating the collection of compliance evidence and offering a real-time view of an organisation’s compliance posture.
Policy Audit reduces the risk of audit failure by up to 95%, helping organisations stay audit-ready at all times, the company added.
It also helps reduce risk exposure by using Qualys TruRisk to map compliance and data privacy risks, identifying critical misconfigurations based on business impact and asset exposure.
Qualys president and CEO Sumedh Thakar said: “Organisations are facing a growing number of mandates, and audit readiness is more critical than ever. Yet many struggle with complex regulations, limited staff, tight budgets, and manual processes—making compliance costly and error-prone.
“Policy Audit transforms audits from a source of stress into a streamlined, automated process that empowers teams to do more while keeping the organisation continuously audit ready.”
Qualys said the update also automates IT Service Management (ITSM) workflows to ensure that the right information reaches the right teams promptly.
Seamless integration with Governance, Risk, and Compliance (GRC) tools further enhances visibility and streamlines risk management.
Policy Audit also generates multiple reports from a single data collection, offering easy monitoring of compliance trends and mandate adherence. These reports reduce audit costs by 50% and streamline the auditing process for executives and stakeholders.
Qualys has also introduced Audit Fix, a tool designed to help users repair audit findings.
This optional feature includes a library of predefined scripts and golden policies that can be integrated into continuous integration/continuous deployment pipelines, further accelerating compliance efforts and reducing breach exposure.
"Qualys unveils Policy Audit to streamline compliance" was originally created and published by International Accounting Bulletin, a GlobalData owned brand.