Understanding Configuration Compliance

Use test results obtained from third-party SCA integrations to verify compliance with security or corporate policies by identifying and remediating non-compliant configuration items.

What is Configuration Compliance

With Configuration Compliance you can do the following:

Automatically import policies, tests, authoritative sources, and technologies
Automatically correlate policies and tests to configuration items
Analyze test results
Remediate non-compliant configuration items

Who uses Configuration Compliance

Configuration Compliance activities can involve many levels of management.

System administrators
Vulnerability administrators
Vulnerability managers
Vulnerability analysts
Compliance administrators

Configuration Compliance tasks involve the following roles.

sn_vulc.admin — can read, write, delete
sn_vulc.write — can read and write
sn_vulc.read — can read

Configuration Compliance and Security Operations

Configuration Compliance works with third-party SCA scanner applications and integrates with Governance, Risk, and Compliance (GRC) for continuous monitoring. Configuration Compliance and GRC are available as separate subscriptions.

When the Qualys Vulnerability Integration is installed, access to Vulnerability Response becomes available. You can have multiple deployments of the Qualys Vulnerability Integration. Data sourced from each deployment is identified and available in a single instance of Configuration Compliance.

Understanding Configuration Compliance

Use test results obtained from third-party SCA integrations to verify compliance with security or corporate policies by identifying and remediating non-compliant configuration items.

What is Configuration Compliance

With Configuration Compliance you can do the following:

Automatically import policies, tests, authoritative sources, and technologies
Automatically correlate policies and tests to configuration items
Analyze test results
Remediate non-compliant configuration items

Who uses Configuration Compliance

Configuration Compliance activities can involve many levels of management.

System administrators
Vulnerability administrators
Vulnerability managers
Vulnerability analysts
Compliance administrators

Configuration Compliance tasks involve the following roles.

sn_vulc.admin — can read, write, delete
sn_vulc.write — can read and write
sn_vulc.read — can read

Configuration Compliance and Security Operations

How search works:

Topics are ranked in search results by how closely they match your search terms

Understanding Configuration Compliance

Understanding Configuration Compliance

What is Configuration Compliance

Who uses Configuration Compliance

Configuration Compliance and Security Operations

On this page

Understanding Configuration Compliance

Understanding Configuration Compliance

What is Configuration Compliance

Who uses Configuration Compliance

Configuration Compliance and Security Operations

Log in to personalize your search results and subscribe to topics