Qmulos: On-Prem or in the Cloud

Qmulos Premium Splunk Solutions are constantly expanding to keep up with the continuedgrowth of critical new datasets. Recently, we enhanced the coverage of our AWS service monitoring for Qmulos applications by more than 90%. Now, our Qmulos applications have the ability to monitor configuration changes, service executions, backups, account changes and more across all the critical AWS services. These enhancements are valuable to monitor not just what happens on your instances running in AWS but also to monitor changes made to major AWS services such as EC2, AWS Backup, ECS, IAM, ELB, Lambda, Redshift, RDS, Route 53, S3, SQS and many more. We now monitor a total of 78 AWS services all within the Qmulos applications. Whether your data comes directly from your servers, or the AWS services running them, Qmulos has you covered.

Qmulos provides a number of preconfigured data integrations allowing us to monitor many important datasources right away. These integrations exist for software provided by vendors: Cisco, Nessus, Bitdefender, WatchGuard, SourceFire and PaloAlto. Our customized software leverages the best aspects of security and audit logs on Linux and Windows operating systems. We make sure that every critical event is captured and monitored in real time.

We are constantly building more and more integrations and there is no limit to monitoring whatever kind of data you desire. Every bit of information can be mapped to our proprietary CIM compliant data models allowing you to make use of our Powerful Qmulos products with any kind of data.

Q-Compliance V3.0 Release

Qmulos is pleased to announce the general availability of version 3.0 of its flagship cybersecurity continuous monitoring and compliance automation solution, Q-Compliance.  With Q-Compliance V3.0 customers can achieve true Ongoing Assessment and Authorization (A&A) or continuous Authority to Operate (ATO) for their systems. Building upon existing foundational capabilities to automatically assess controls and compute compliance scores for systems, version 3.0 adds more automation actions to grant or deny system authorizations based on time-driven or event-driven conditions, e.g. automatically grant or deny an ATO when a system’s compliance scores exceed or fall below a certain threshold, or when a critical set of controls pass or fail their assessments.

A new System Authorization dashboard has been added to visualize each system’s authorization status along with other important information such as control assessment results, Plan of Actions and Milestones (POAM), and other required documents such as the System Security Plan. In addition, there is a new Organization Systems Authorizations dashboard that provides key metrics into the ATO statuses of all the systems owned by an organization (e.g. number of authorized systems, number of unauthorized systems, number of authorizations expiring in the next twelve months, etc.) to enable senior leaders to plan and prioritize resources to improve their ATO posture. Customers can download Q-Compliance V3.0 now on the Qmulos Customer Support Portal.

For more information on how Qmulos can help your organization achieve true Ongoing A&A, please Request Additional Information here.

Integrating Machine and Human Workflows for Compliance Automation

Maintaining the security and compliance posture of a system requires automated machine workflows augmented with human workflows for oversight and change control. With the features added in the recent V2.9 release, Q-Compliance now enables you to create integrated machine and human workflow actions to monitor, detect, and remediate compliance issues. Continuously monitor your systems’ control compliance and effectiveness using data in Splunk that represents an accurate up-to-the-minute view of your IT environment.

Figure 1: System Continuous Monitoring

Let’s walk through a short example.  In Figure 1, we see that the “CM-08 Information System Component Inventory” control is failing.  Using Splunk’s alerting workflows in conjunction with an extensive library of prebuilt compliance analytics from Q-Compliance (shown in Figure 2), we have detected that there are unauthorized software installations on the devices in the Qmulos Windows system. Q-Compliance has built-in custom alert actions to automatically pass or fail security controls based on the findings detected by the analytics. 

Figure 2: Analytics and visualizations to detect compliance findings

System owners will be automatically notified of any alerts on the System Actions dashboard (shown in Figure 3) where they can drill into the alerts to see the details of the findings. Any controls that failed as a result of those findings will also be displayed along with the compliance scores so system owners can see how the findings have impacted their system’s overall compliance posture. In our example, the Qmulos Windows system owner can use the new ticketing feature in Q-Compliance to create a ticket to assign someone to investigate and remediate the discovery of unauthorized software on the Windows machines. In many cases, users install unapproved software because they have a legitimate use for it so it is important to put a human in the loop to investigate before trying to automatically remediate the issue. With its compliance analytics, custom alert actions, and ticketing features, Q-Compliance enables you to combine the speed and automation of machine workflows based on Splunk’s alerting framework with human workflows to make controlled changes for compliance automation.

Figure 3: System Actions and Workflows to Investigate and Remediate Compliance Findings

Combining and automating machine and human workflows in this way has enabled our customers to monitor all relevant technical controls in near-real time, achieving true ongoing assessment, and turning compliance into real operational security! 

The Data-Driven Strategy to Compliance and Cyber Hygiene

Qmulos CEO and Founder, Matt Coose, along with Dr. Ron Ross, NIST Fellow, will host a discussion on compliance and risk management frameworks, and how the right data-driven approach can help organizations go beyond meeting regulatory requirements and provide a foundation for a robust security posture.

While compliance efforts are mandated and top-of-mind across government and education, the wrong approach can be costly and result in excruciating audits and a failing grade on scorecards. But innovators are leveraging their data and finding if properly executed, the initiative can be seamless and ensure critical cyber hygiene.

Within the webinar, the speakers hope to convey the latest in NIST guidance to enhance information assurance in an elevated threat landscape. They will also discuss best practices for implementing compliance frameworks and enabling self-reporting as well as how leveraging a data-driven approach can automate and accelerate compliance initiatives like RMF, FISMA, DFARS, and a host of others.

The event is being hosted from 11am – 2pm on Thursday, August 1st. Please visit the below link in order to reserve a spot to enhance your knowledge on time-relevant topics and learn from some of the brilliant minds pioneering compliance within the data sector.

Register

Speakers:

Dr. Ron Ross

Dr. Ron Ross
Fellow
National Institute of Standards and Technology
Twitter: @ronrossecure

Matt Coose

Matt Coose
CEO
Qmulos
Email: sales@qmulos.com

Ashok Sankar

Ashok Sankar
Director, Solutions Marketing
Splunk Inc. 
Blog: https://www.splunk.com/blog/author/asankar.html

David Hartley

David Hartley
IT Specialist
Western Area Power Administration
LinkedIn: https://www.linkedin.com/in/denvercyber/


Splunk GovSummit 2019

Thank you so much for visiting Qmulos at Splunk GovSummit! It was a privilege introducing you to our revolutionary products, Q-Compliance and Q-Audit, both powered by Splunk.

Team Qmulos was fascinated to learn that along with interest from those in the government sector, we also had many people stop by from commercial industries ranging from finance and insurance to construction, healthcare, technology, and many others. The best practices and standards are clearly answering a need in the both the public and private sectors. It’s energizing to see the both sectors aligning in defense of our enterprises and missions alike.

Our top priority is to help the marketplace migrate from legacy GRC tools to real-time Risk Management solutions. Every year we work to update existing features to better meet our customers’ priorities and create new capabilities they don’t even know they need yet. We will continue to listen to our partners and customers as we challenge ourselves to open the world’s eyes to the value of security and compliance automation.

We rely on Splunk’s robust and scalable infrastructure to provide our IT risk management solution to meet the needs of the world’s largest enterprises. Thanks again to Splunk for featuring us on their Partner Spotlight Blog! Check it out to learn more about our passion for providing secure, cost-effective, and innovative real-time security solutions. 

Cyber Risk Scoring You Can Use Today

Qmulos is excited to share the new capabilities, derived from the Department of Homeland Security’s (DHS) Continuous Diagnostics and Mitigation (CDM) program, available in our December 2018 release of Q-Compliance.

DHS, in collaboration with other agencies and industry partners, established an AWARE risk scoring algorithm to help organizations prioritize remediation of the most critical cyber hygiene issues across their environments. With risk management now elevated to a board-level discussion, our product incorporates this algorithm, powered by Splunk, and provides CISOs with both real time, granular information and alerts for fixing their worst problems, as well as summarized reporting suitable for briefing executives and board members.

Whether you’re an agency or commercial entity, this risk scoring algorithm will provide insights and help you to greatly improve your security posture. We expect it to evolve over time, however, the current algorithm focuses on three critical cyber hygiene domains; unauthorized assets, vulnerabilities, and misconfigurations, and incorporates asset classification, tolerance, aging, and severity.

We’d like to invite you to engage us for a discussion and live demo for how this could apply to you and how it could benefit your organization. Request a demo or call us, 1.844.476.8567 today!

Qmulos Wins Innovation Award at Splunk .conf18

Each year the Splunk Revolution Awards recognizes truly spectacular achievements of Splunk teams and users around the world.

For the past six years, we’ve been using the Splunk platform to deliver innovative apps to help enterprises improve their security and compliance posture.

Qmulos is changing the paradigm for cybersecurity integrated risk management (IRM) with Enterprise-Class software for cloud, enterprise, and hybrid environments. Our approach harnesses machine data to provide real-time insight into what security and privacy controls are actually in place, whether or not they are effective, and automates adaptive response actions driven from live technical evidence.

Thanks to our partner, Splunk for honoring us with the 2018 Innovation Award at .conf18. Continue to follow us to stay up-to-date with all the exciting things on the horizon for Qmulos!

Qmulos Named to Inc. 5000 List of America’s Fastest-Growing Private Companies

Qmulos is proud to announce its debut on Inc. Magazine’s 37th annual Inc. 5000 list, the most prestigious ranking of the nation’s fastest-growing private companies. Starting in 1982, this prominent list has become the hallmark of entrepreneurial success.

The list represents a unique look at the most successful companies within the American economy’s most dynamic segment—its independent small businesses. Microsoft, Dell, Domino’s Pizza, Pandora, Timberland, LinkedIn, Yelp, Zillow, and many other well-known names gained their first national exposure as honorees on the Inc. 5000.

This year, the list displays particular growth from past Inc. 5000 lists including a three-year average growth of 538%, “If your company is on the Inc. 5000, it’s unparalleled recognition of your years of hard work and sacrifice,” says Inc. editor in chief James Ledbetter. “The lines of business may come and go, or come and stay. What doesn’t change is the way entrepreneurs create and accelerate the forces that shape our lives.”

Qmulos, a leader in compliance and audit solutions powered by Splunk, has experienced exceptional customer, revenue, and channel growth this year. The company has expanded market penetration in regulated and critical infrastructure sectors to include finance, insurance, healthcare, law enforcement, energy, telecommunications, and technology, while continuing to grow their presence in the federal government defense, intelligence, and civilian markets. Qmulos is poised to become the de-facto standard when an organization needs to dramatically simplify their ability to audit, evaluate, and comply with industry and regulatory IT mandates with real time risk management of technical controls.

“It is an honor to be included on the Inc. 5000 list alongside so many innovative and successful companies,” said Matt Coose, CEO of Qmulos. “I’d like to thank our dedicated team of super-humans and our close partner, Splunk. We have built and are delivering a new paradigm of compliance on big-data, the future is limitless as we continue to help others realize the value of doing compliance and risk management in a way that improves security.”