Maintaining the security and compliance posture of a system requires automated machine workflows augmented with human workflows for oversight and change control. With the features added in the recent V2.9 release, Q-Compliance now enables you to create integrated machine and human workflow actions to monitor, detect, and remediate compliance issues. Continuously monitor your systems’ control compliance and effectiveness using data in Splunk that represents an accurate up-to-the-minute view of your IT environment.
Figure 1: System Continuous Monitoring
Let’s walk through a short example. In Figure 1, we see that the “CM-08 Information System Component Inventory” control is failing. Using Splunk’s alerting workflows in conjunction with an extensive library of prebuilt compliance analytics from Q-Compliance (shown in Figure 2), we have detected that there are unauthorized software installations on the devices in the Qmulos Windows system. Q-Compliance has built-in custom alert actions to automatically pass or fail security controls based on the findings detected by the analytics.
Figure 2: Analytics and visualizations to detect compliance findings
System owners will be automatically notified of any alerts on the System Actions dashboard (shown in Figure 3) where they can drill into the alerts to see the details of the findings. Any controls that failed as a result of those findings will also be displayed along with the compliance scores so system owners can see how the findings have impacted their system’s overall compliance posture. In our example, the Qmulos Windows system owner can use the new ticketing feature in Q-Compliance to create a ticket to assign someone to investigate and remediate the discovery of unauthorized software on the Windows machines. In many cases, users install unapproved software because they have a legitimate use for it so it is important to put a human in the loop to investigate before trying to automatically remediate the issue. With its compliance analytics, custom alert actions, and ticketing features, Q-Compliance enables you to combine the speed and automation of machine workflows based on Splunk’s alerting framework with human workflows to make controlled changes for compliance automation.
Combining and automating machine and human workflows in this way has enabled our customers to monitor all relevant technical controls in near-real time, achieving true ongoing assessment, and turning compliance into real operational security!
Qmulos CEO and Founder, Matt Coose, along with Dr. Ron Ross, NIST Fellow, will host a discussion on compliance and risk management frameworks, and how the right data-driven approach can help organizations go beyond meeting regulatory requirements and provide a foundation for a robust security posture.
While compliance efforts are mandated and top-of-mind across government and education, the wrong approach can be costly and result in excruciating audits and a failing grade on scorecards. But innovators are leveraging their data and finding if properly executed, the initiative can be seamless and ensure critical cyber hygiene.
Within the webinar, the speakers hope to convey the latest in NIST guidance to enhance information assurance in an elevated threat landscape. They will also discuss best practices for implementing compliance frameworks and enabling self-reporting as well as how leveraging a data-driven approach can automate and accelerate compliance initiatives like RMF, FISMA, DFARS, and a host of others.
The event is being hosted from 11am – 2pm on Thursday, August 1st. Please visit the below link in order to reserve a spot to enhance your knowledge on time-relevant topics and learn from some of the brilliant minds pioneering compliance within the data sector.
Dr. Ron Ross
National Institute of Standards and Technology
Director, Solutions Marketing
Western Area Power Administration
Thank you so much for visiting Qmulos at Splunk GovSummit! It was a privilege introducing you to our revolutionary products, Q-Compliance and Q-Audit, both powered by Splunk.
Team Qmulos was fascinated to learn that along with interest from those in the government sector, we also had many people stop by from commercial industries ranging from finance and insurance to construction, healthcare, technology, and many others. The best practices and standards are clearly answering a need in the both the public and private sectors. It’s energizing to see the both sectors aligning in defense of our enterprises and missions alike.
Our top priority is to help the marketplace migrate from legacy GRC tools to real-time Risk Management solutions. Every year we work to update existing features to better meet our customers’ priorities and create new capabilities they don’t even know they need yet. We will continue to listen to our partners and customers as we challenge ourselves to open the world’s eyes to the value of security and compliance automation.
We rely on Splunk’s robust and scalable infrastructure to provide our IT risk management solution to meet the needs of the world’s largest enterprises. Thanks again to Splunk for featuring us on their Partner Spotlight Blog! Check it out to learn more about our passion for providing secure, cost-effective, and innovative real-time security solutions.
Qmulos is excited to share the new capabilities, derived from the Department of Homeland Security’s (DHS) Continuous Diagnostics and Mitigation (CDM) program, available in our December 2018 release of Q-Compliance.
DHS, in collaboration with other agencies and industry partners, established an AWARE risk scoring algorithm to help organizations prioritize remediation of the most critical cyber hygiene issues across their environments. With risk management now elevated to a board-level discussion, our product incorporates this algorithm, powered by Splunk, and provides CISOs with both real time, granular information and alerts for fixing their worst problems, as well as summarized reporting suitable for briefing executives and board members.
Whether you’re an agency or commercial entity, this risk scoring algorithm will provide insights and help you to greatly improve your security posture. We expect it to evolve over time, however, the current algorithm focuses on three critical cyber hygiene domains; unauthorized assets, vulnerabilities, and misconfigurations, and incorporates asset classification, tolerance, aging, and severity.
We’d like to invite you to engage us for a discussion and live demo for how this could apply to you and how it could benefit your organization. Request a demo or call us, 1.844.476.8567 today!
Each year the Splunk Revolution Awards recognizes truly spectacular achievements of Splunk teams and users around the world.
For the past six years, we’ve been using the Splunk platform to deliver innovative apps to help enterprises improve their security and compliance posture.
Qmulos is changing the paradigm for cybersecurity integrated risk management (IRM) with Enterprise-Class software for cloud, enterprise, and hybrid environments. Our approach harnesses machine data to provide real-time insight into what security and privacy controls are actually in place, whether or not they are effective, and automates adaptive response actions driven from live technical evidence.
Thanks to our partner, Splunk for honoring us with the 2018 Innovation Award at .conf18. Continue to follow us to stay up-to-date with all the exciting things on the horizon for Qmulos!
Qmulos is proud to announce its debut on Inc. Magazine’s 37th annual Inc. 5000 list, the most prestigious ranking of the nation’s fastest-growing private companies. Starting in 1982, this prominent list has become the hallmark of entrepreneurial success.
The list represents a unique look at the most successful companies within the American economy’s most dynamic segment—its independent small businesses. Microsoft, Dell, Domino’s Pizza, Pandora, Timberland, LinkedIn, Yelp, Zillow, and many other well-known names gained their first national exposure as honorees on the Inc. 5000.
This year, the list displays particular growth from past Inc. 5000 lists including a three-year average growth of 538%, “If your company is on the Inc. 5000, it’s unparalleled recognition of your years of hard work and sacrifice,” says Inc. editor in chief James Ledbetter. “The lines of business may come and go, or come and stay. What doesn’t change is the way entrepreneurs create and accelerate the forces that shape our lives.”
Qmulos, a leader in compliance and audit solutions powered by Splunk, has experienced exceptional customer, revenue, and channel growth this year. The company has expanded market penetration in regulated and critical infrastructure sectors to include finance, insurance, healthcare, law enforcement, energy, telecommunications, and technology, while continuing to grow their presence in the federal government defense, intelligence, and civilian markets. Qmulos is poised to become the de-facto standard when an organization needs to dramatically simplify their ability to audit, evaluate, and comply with industry and regulatory IT mandates with real time risk management of technical controls.
“It is an honor to be included on the Inc. 5000 list alongside so many innovative and successful companies,” said Matt Coose, CEO of Qmulos. “I’d like to thank our dedicated team of super-humans and our close partner, Splunk. We have built and are delivering a new paradigm of compliance on big-data, the future is limitless as we continue to help others realize the value of doing compliance and risk management in a way that improves security.”
Qmulos’ Principal Security Architect, Sean Donelan is no stranger to internet disaster recovery. Sean has aided local and national governments on recovery, as well as internet disaster preparedness, for over thirty years. In 2002, he served as editor of the White House Internet Disaster Recovery Working Group, and in 2003, co-editor for the National Academy of Sciences report, The Internet Under Crisis Conditions. Sean has worked for the U.S. Department of Homeland Security as the Bureau Chief for Trusted Internet Connections and a variety of internet infrastructure companies.
After Hurricane Andrew, Sean helped recover internet networks for Florida’s public libraries. Naturally, after Hurricane Maria wreaked havoc on Puerto Rico, he stepped up to lend a hand. Immediately, Sean began posting status updates to the North American Network Operator’s Group (NANOG) regarding the island’s connectivity state. The lack of connectivity in Puerto Rico hindered interpersonal communications as well as the coordination of responders aiding in recovery efforts.
Sean continues to play a vital role as recovery efforts are ongoing. He recently joined the Commission on Caribbean Communications Resilience with other regional and international communication technology experts. The Commission will examine the region’s vulnerabilities in order to understand which failures contributed most significantly to the overall outage. Sean will work with the rest of the Commission to produce a report with specific recommendations to Caribbean governments, regulators, and communications ministries in order to increase resilience among the region’s communications infrastructure in the face of future natural disasters. Qmulos is proud of Sean for all his hard work and thanks him for being dedicated to giving back!
Are you using Splunk to store your audit logs? Passively storing audit logs for regulatory compliance is by far the most common use-case for Splunk. But, is this providing you with the security value you expect from your logs? Now there is a way to get real security value from this data based on best practices for Enterprise Audit.
Qmulos Enterprise Audit (Q-Audit), powered by Splunk, provides immediate audit event context to your audit logs so you can proactively use them to monitor, detect, alert, and investigate suspicious activity.
Intelligence Community Standard (ICS) 500-27, widely considered the gold standard for audible events, is mandated for all federal government classified networks/systems. But, all organizations benefit from monitoring a comprehensive list of audible events. Q-Audit was purpose built to this standard to deliver an out-of-the-box commercial solution with real-time analytics, reports, dashboards, and alerts, providing a highly defensible capability for enterprise audit. Request a demo today.
The benefits of implementing Q-Audit include:
- Quickly turn your reactive audit logs into proactive security value
- Improve actionable intelligenceand inform security operations
- Support for enterprise, cloud, hybrid, and sharedservice environments
- Automatically translateobscure vendor event codes into real security insights
- Enable insider threat detection, closely monitor privileged users and activities
- Satisfy compliance audit requirements
Organizations are often faced with requirements for compliance against multiple frameworks, standards, or regulations. Qmulos’ Enterprise Compliance (Q-Compliance) application, powered by Splunk, has a Frameworks Dashboard feature that enables organizations to score themselves against other frameworks using the NIST 800-53 controls catalog as the common Rosetta Stone across these other frameworks. In the Spring Release, Q-Compliance takes this flexibility to the next level with the introduction of the Dynamic Control Architecture.
The Dynamic Control Architecture will enable Q-Compliance to integrate controls from multiple standards beyond NIST 800-53 such as GDPR, HIPAA, PCI and even custom controls. Now organizations can automate compliance against multiple standards down to the individual control level independent of any mappings. Compliance against those multiple standards can be automatically assessed against a single source of truth, the events in the Splunk indexes, using a vast and growing library of reusable components for analytics and visualizations. In addition, these analytics and visualizations for technical control evidence can be added or changed dynamically through a simple plug-and-play interface allowing for easy customization.
Latest Press Release
- Integrating Machine and Human Workflows for Compliance AutomationAugust 1, 2019 - 11:09 am
Figure 1: System Continuous Monitoring Let’s walk through a short example. In Figure 1, we see that the “CM-08 Information System Component Inventory” control is failing. Using Splunk’s alerting workflows in conjunction with an extensive library of prebuilt compliance analytics from Q-Compliance (shown in Figure 2), we have detected that there are unauthorized software installations on the devices in […]
- The Data-Driven Strategy to Compliance and Cyber HygieneJuly 29, 2019 - 4:12 pm
Qmulos CEO and Founder, Matt Coose, along with Dr. Ron Ross, NIST Fellow, will host a discussion on compliance and risk management frameworks, and how the right data-driven approach can help organizations go beyond meeting regulatory requirements and provide a foundation for a robust security posture. While compliance efforts are mandated and top-of-mind across government […]
- MindShare Selects Qmulos’ Matt Coose for its 2019 CohortMay 23, 2019 - 5:06 pm
- Compliance Resources
- News and Events
- September 2019
- August 2019
- July 2019
- May 2019
- March 2019
- October 2018
- August 2018
- May 2018
- April 2018
- January 2018
- December 2017
- November 2017
- September 2017
- July 2017
- June 2017
- May 2017
- March 2017
- February 2017
- December 2016
- October 2016
- September 2016
- August 2016
- June 2016
- January 2016
- October 2015
- August 2015