Qualys Seeks Partners For Payment Card Industry Compliance


Qualys on Monday unveiled a platform to help companies to meet the credit card industry's heightened security requirements and a new partner program to spur MSPs to develop Payment Card Industry (PCI)-related applications and services.

Fed up with out-of-control fraud, the credit card industry is requiring companies that do business online to demonstrate higher levels of network security. PCI requirements are a collection of security technology standards for protecting cardholder information.

QualysGuard On Demand platform scans networks, identifies potential vulnerabilities and provides reporting tools to allow companies to pass the security tests that credit card companies conduct on their networks every 90 days to monitor PCI compliance, said Amer Deeba, chief marketing officer at Qualys, Redwood Shores, Calif.

The platform includes a simple interface that guides companies through the process of implementing security controls required for PCI certification, and it gives acquiring financial institutions a way to monitor the compliance status of merchants and partners, Deeba said.

The simplified interface removes the complexity that used to plague network upgrades for PCI compliance, said Michael Mathews, CTO at Cynergistek, an Austin, Texas-based solution provider.

"It's so much easier now because the platform keeps track of the false positives for you, and it doesn't overwhelm you with a lot of options," Mathews said.

Qualys also aims to sign up MSPs and security VARs to use its platform to develop PCI-related services and applications. Partners with PCI certification can resell services to companies looking to upgrade their networks, Deeba said.

Available now, QualysGuard PCI On Demand starts at $495 for an annual subscription, which includes unlimited scans for three IP addresses and 24x7 support.