Qualys and Cowbell Expand Partnership to Continuously Assess Risk for Adaptive Cyber Insurance


Cowbell adds Qualys External Attack Surface Management (EASM) real-time intelligence feed to assess clients’ risk posture 

Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of disruptive cloud-based IT, security and compliance solutions, and Cowbell, a leading provider of cyber insurance today announced they are expanding their partnership, adding a real-time attack surface intelligence feed from Qualys' External Attack Surface Management (EASM) to assess customer cyber risk for cyber insurance purposes.

An ideal way to assess an organisation’s cyber preparedness is to combine the inside-out with an outside-in attacker view of the entire attack surface. Qualys EASM leverages the Qualys Cloud Platform to discover the entire attack surface including third-party data and internet-facing unknown assets, domains, sub-domains, M&A, and subsidiaries assets including installed applications. It then overlays business and risk context to establish asset criticality and TruRisk score. Additionally, it identifies unauthorised, end-of-life and end-of-service software, the absence of required security tools, and assesses the health of the attack surface.

Through this partnership, Cowbell will leverage Qualys EASM data, enriching the current library of scanners used by Cowbell for risk assessment. At the same time, External Attack Surface assessment showing attack surface risks, vulnerabilities, security misconfigurations and comprehensive cyber risk posture will be available to customers seeking standalone cyber insurance coverage through Cowbell. Additionally, Cowbell policyholders can activate built-in connectors for VMDR, Compliance and Container Security via the Cowbell platform and become eligible for premium credits.

“Our collaboration with Cowbell brings additional innovation to the cyber insurance industry," said Pinkesh Shah, chief product officer, Qualys. “By leveraging high accuracy and comprehensive security signals from Qualys EASM, cyber insurance companies like Cowbell can assess the risk posture for any organisation in real time, which could reduce payouts and reward clients by optimising their cyber insurance premiums.”

“Cowbell is at the forefront of cyber insurance innovation, and we’re constantly looking for ways to provide high fidelity and continuous assessment of policyholders’ cybersecurity posture to reduce their risk exposure,” said Rajeev Gupta, co-founder and CPO at Cowbell. “The partnership with Qualys further strengthens our ability to assess risk for insurance purposes and close the insurability gaps for many organisations seeking financial protection through insurance.”  

About Qualys  
Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of disruptive cloud-based security, compliance and IT solutions with more than 10,000 subscription customers worldwide, including a majority of the Forbes Global 100 and Fortune 100. Qualys helps organisations streamline and automate their security and compliance solutions onto a single platform for greater agility, better business outcomes, and substantial cost savings. 

The Qualys Cloud Platform leverages a single agent to continuously deliver critical security intelligence while enabling enterprises to automate the full spectrum of vulnerability detection, compliance, and protection for IT systems, workloads and web applications across on premises, endpoints, servers, public and private clouds, containers, and mobile devices. Founded in 1999 as one of the first SaaS security companies, Qualys has strategic partnerships and seamlessly integrates its vulnerability management capabilities into security offerings from cloud service providers, including Amazon Web Services, the Google Cloud Platform and Microsoft Azure, along with a number of leading managed service providers and global consulting organisations. For more information, please visit http://www.qualys.com.

Qualys, Qualys VMDR® and the Qualys logo are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.