Rethinking the Role of Compliance

Q-Compliance V3.2

Qmulos is pleased to announce general availability of version 3.2 of its flagship cybersecurity continuous monitoring and compliance automation solution Q-Compliance.  Our dev team has been hard at work so V3.2 is jam-packed with new features to help you turn compliance into operational security value.  Some key features in this release that we’re sure you’ll be excited about include:

  • Dark mode
  • Support for the Department of Defense’s Cyber Security Maturity Model
  • Data Sources Dashboards
  • Automatic POAM creation

Read on for more details on each of these key features …


Dark Mode

As you can see from the screenshots, Q-Compliance now has a configurable dark mode option to make things easier on the eyes of our nocturnal security brethren.  Yes, it took a while, but we’ve had a lot of other important features to build, i.e. features that actually streamline compliance and add security value.  In any case, we think that once you see it, you’ll agree that it has been worth the wait.

Support for the DoD CMMC

Data Sources DashboardsYou’ve been asking and now we’ve delivered!  People who have been awed by our demos have always asked what specific data sources (i.e. cyber security tools) do they need to have integrated with Splunk to light up the control dashboards and take advantage of Q-Compliance’s automation capabilities.  While we’ve always had documentation that listed the required data sources, we thought it would be even cooler to have dashboards directly in the app to provide this information.  So our security and compliance research team has been hard at work researching the most common tools that are used to implement the NIST security controls and we’ve taken the results of that to populate new Data Sources Dashboards in the app that lists specific vendors and products that are relevant for each control.  The list of cyber security tools is almost endless so this content will be regularly updated with each release of Q-Compliance.

Automatic POA&M Creation

Plans of Actions and Milestones (POA&Ms) – don’t we all love them?!  Regardless of how you feel about POAMs, they are how compliance findings are documented and tracked to ensure that they eventually get fixed and we’ve added a new feature that should make your lives a little easier when dealing with POA&Ms.  This feature is a Splunk custom alert action that will allow you to automatically create a POA&M whenever any Splunk alert triggers.  Think about all the POAMs you’ve had to create for each unpatched asset every time you run a vulnerability scan.  Well now you can automate that by simply creating an alert using the analytics we have for the RA-05 Vulnerability Scanning control and adding the POA&M alert action.

There are many other features and enhancements in Q-Compliance V3.2 that we can’t list them all in one blog post.  If you want more details on any of the features we’ve just described or want to find out about other updates in this release, please contact, one of our valuable partners, or visit for more information.

Others have also read ...


What is NY DFS Part 500 compliance?

NY DFS Part 500 compliance involves adhering to the cybersecurity regulations set forth by the New York Department of Financial Services (NY DFS). These regulations require financial institutions to implement a cybersecurity program to protect consumer data and ensure regulatory compliance.

Read More »

What is HIPAA compliance?

HIPAA compliance involves adhering to the Health Insurance Portability and Accountability Act (HIPAA) regulations, which protect the privacy and security of individuals’ health information. Organizations must implement measures to safeguard protected health information (PHI) and ensure compliance with HIPAA requirements.

Read More »

Qmulos Recognized in 2024 Splunk Regional Partner Awards

Qmulos Named 2024 Regional Partner of the Year Winner for Outstanding Public Sector
Partnership – Qmulos, a next-generation compliance, security and risk management automation provider, announced today it has received the 2024 Regional Partner of the Year award for exceptional performance and commitment to their Splunk partnership.

Read More »

What is Compliance Workflow Automation?

Compliance workflow automation involves using technology to automate the processes and tasks involved in managing compliance. This includes automating data collection, reporting, and monitoring to streamline compliance activities and reduce manual effort.

Read More »

What is NIST RMF?

The NIST Risk Management Framework (RMF) is a set of guidelines for managing information security risk. The RMF provides a structured approach to integrating security and risk management activities into the system development lifecycle.

Read More »

Request a Demo

Learn how QMULOS can help your company grow by scheduling a demo with our team.