The rise in hybrid infrastructure and ever more dispersed devices and end points has made vulnerability management critical. Many solutions are good at device detection and security assessment. But delivering a report of common vulnerabilities and exposures is only the first step to securing a device.

“All of this vulnerability management is not useful if we can’t do something about it,” said Sumedh Thakar (pictured, left), president and chief product officer at Qualys Inc.  “You need the ability to patch and fix those issues.”

Thakar and Nayaki Nayyar (pictured, right), executive vice president and chief product officer at Ivanti Inc., spoke with Lisa Martin, host of theCUBE, SiliconANGLE Media’s livestreaming studio, for a digital CUBE Conversation. They discussed how the partnership between Ivanti and Qualys brings full lifecycle vulnerability management, detection and response into a single platform. (* Disclosure below.)

Everybody’s outside the firewall

Working from home is an open invitation to bad actors, with tens of thousands of workers using personal devices and home Wi-Fi networks to connect to applications and data that were previously protected behind the secured perimeter of a closed-office environment.

“Everyone is trying to manage … the explosive growth of devices … not to mention how to secure those devices,” Nayyer said.

Ivanti patches approximately 1.2 billion insecurities annually and just launched its intelligent Neurons self-healing solution. So matching Ivanti’s solution with Qualys’s decades of vulnerability management experience is a strategic play for both companies.

“[The] Ivanti partnership has been something that has really helped our customers because they bring in that patching piece, and this is one of the most complicated things you do,” Thakar stated.

“This truly helps our customers go beyond just managing the endpoints to now what we call sub-securing those endpoints, being able to automatically detect all security vulnerabilities and issues and get closer and closer to the self-remediation of those vulnerabilities,” Nayyar said.

The partnership started with patch management in Windows and Linux. And this announcement adds Apple Inc. operating systems to the list. Future plans include expanding further to offer the solution for other devices and platforms, according to Nayyar.

A full lifecycle solution for end-point security

The Qualys Vulnerability Management Detection Response lifecycle is made up of four elements: continuous asset inventory discovery; security issue detection; assessment and prioritization; and patch. By embedding Ivanti’s patch management directly into Qualys’ agent, users have one solution for VMDR management across the entire lifecycle.

“You have that ability to do detection, prioritization and response in a single solution, which is something that nobody else offers today because everybody is focused on just one aspect of it,” Thakar concluded.

Watch the complete video interview below, and be sure to check out more of SiliconANGLE’s and theCUBE’s CUBE Conversations. (* Disclosure: Ivanti Inc. sponsored this segment of theCUBE. Neither Ivanti nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)

Photo: SiliconANGLE